my personal blog about systemcenter

Archive for October, 2013

Data Protection Manager 2012 R2 Fiber Channel Tape Sharing with a side of Install Part 1

Categories: Data Protection Manager, DPM, Uncategorized, Windows Server 2012
Comments Off on Data Protection Manager 2012 R2 Fiber Channel Tape Sharing with a side of Install Part 1

This will be the posts focused on using Data Protection Manager with Tape Library Sharing

For Data Protection Manager to be able to use library sharing the Tape Library and the Backup Servers needs to be connected though Fiber Channel , no other data paths are supported

One other option is to use partitioning so one Library can be sliced up into mutiple devices , this will from a Data Protection Manager standpoint be treated as a standalone installation

The install here follow the reference documentation from http://technet.microsoft.com/en-us/library/hh758124.aspx but adding the steps to get the fabric configured

Call me old fashioned but i really still like Tape as long term retention , sharing the library will help keep cost down as we can use larger library

In this example we have 2 servers DPM01 and DPM02 , DPM01 will act as library server and DPM02 will act as library client.

Prereq : DPM01 and DPM02 are booting off the SAN in this example so their Alias and Zoning against the storage have already been completed

Image-40

The servers have no library or tapes connected

Image-41

From a Fabric point of view we login to our switch and create a “New Alias”

Image-42

To keep things simple we create a Alias called Tape

Image-43

On our list of world wide names we select the two tape drives in the library and “Add Member”

Read more

Data Protection Manager 2012 R2 Fiber Channel Tape Sharing with a side of Install Part 2

Categories: Uncategorized
Comments Off on Data Protection Manager 2012 R2 Fiber Channel Tape Sharing with a side of Install Part 2

This will be the posts focused on using Data Protection Manager with Tape Library Sharing

 

clip_image001

Data Protection Manager require a SQL server to function , in this setup using a local SQL 2012 SP1 is the design

clip_image002

Engine+Reporting Servers and Tools is required to install

clip_image003

For tape library sharing to function the SQL servers needs to be installed with a domain account , and the account needs local admin rights

clip_image004

Ensure that the account for running SQL have full rights

Read more

Recently ran into a issue where the central console for DPM couldnt be installed

Image

Steps to reproduce , start the installer on the Operations Manager Server

 

Image

Select Central Console Server and Client side

Image

Install the DPM management packs and check again

Image

And Central Console had failed installation

The DPM installation failed. Review the error details, take appropriate action, and then run DPM Setup again.
ID: 810. Details: Fatal error during installation

Error 810

and drilling down into the logfile shows the error

Read more

 

One of the features in Windows Server 2012 / 2012 R2 is the ability to use bitlocker on clustered volumes this will encrypt the whole volume preventing access to the data if they storage is “lost” or cloned , adding another layer to the security model.

The requirements is a Windows Server 2012 Domain Controller and a Trusted Platform Module in the Hyper-V host , this will not enable bitlocker within the guest vm but on the volume that the guest is stored

If applications dont support encryption of data and there is a hard requirement from audits that everything stored must be encrypted using bitlocker will help pass the audit

This example will use a staticpassword for the bitlocker other options are available

 

Image

To enable bitlocker on the Hyper-V host we need a TPM module after adding the module on the blade servers its showing in the device manager on both nodes

 

Image

There are two ways of adding the bitlocker feature either though server manager and add features bitlocker

Image

or though powershell Add-WindowsFeature BitLocker

Both will require a reboot after completion.

 

Image

 

To enable encryption we need to turn on maintenance mode this can either be done from the gui

Image

or from powershell – get-clusteredsharedvolume | Suspend-ClusterResouce

In this test cluster we only have that one volume so no filtering is needed

 

Image

Both methods puts the resource into maintenance

 

Image

This example uses a static password as recovery

To enable bitlocker on the CSV owner node run

$SecureString = ConvertTo-SecureString thispasswordshouldbebetter -AsPlainText -Force

Enable-BitLocker C:\ClusterStorage\CSV001 -PasswordProtector –Password $SecureString

 

Image

And we adding the Cluster Named Object for unlock

 

Image

And we can see the volume being encrypted

 

Image

and through powershell with get-bitlockervolume

 

Image

After encryption is completed turn off maintenance mode

Image

and the volume is back in action.

Image

Unpresent/Removing the drive from the cluster to test

Image

 

Adding the drive to a host outside of the Cluster

Image

So we can see the bitlocker volume trying to browse it

 

Image

Prompts us for the recovery password used in this example

 

 

Image

And grants us access to the data

 

 

 

 

 

Reference :

http://blogs.msdn.com/b/clustering/archive/2012/07/20/10332169.aspx

http://technet.microsoft.com/en-us/library/dn383585.aspx

Had a question today about the ability to recover the SQL master database if the SQL server wasnt operational.

To set the scene for the converation we did the following

Image

Installed the Data Protection Manager on the SQL 2012 server , created a brand new fresh and shiny protection group , added the SQL instance

Image

Created short term recovery this was after all just a test

Image

And a backup every hour kept for the last 5 days

 

Image

And as always with Data Protection Manager Sucess is an option :)

Image

And a few minutes later we now have a full backup of the SQL server

Image

And lets try to add the human factor

Image

Twice

Image

And after that we have a non functional SQL Server

 

Image

And as we can see the reason if lack of master databases

 

Image

DPM to the rescue , enter recovery select the master database

Image

Option One , Recover to original instance (otherwise restore to folder and copy the files manually)

 

Image

And leave database operational as we are not recovering from additional logs

 

Image

Verify server/files

Image

And 35 seconds later the database is recovered without incident

 

Image

Recovery is complete , SQL instance is restarted and we can fire the blogger that deleted the master database