How to create Exchange 2007/2010 mail-level backupset
Product Version
Operating System
Description
This article describes how to create an MS Exchange mail level backup set for an Exchange 2007 / 2010 Server.
Solution
Confirm that all requirements are met by the client server:
Requirement checklist
AhsayOBM installation
AhsayOBM must be installed on the Exchange server hosting the database (e.g. Exchange server with mailbox role).
Mailbox access permission
The Active Directory account used for backup must have full access to the mailboxes. To grant full access right for the account:
Exchange Server 2007
Get-MailboxServer | Add-ADPermission -User "%os_username%" -AccessRights GenericAll -ExtendedRights ms-exch-store-admin,receive-as,send-as -InheritanceType All
Exchange Server 2010
Get-Mailbox | Add-MailboxPermission -User "%os_username%" -AccessRights FullAccess
%os_username% is the username of the operating system account for backup.
Membership setting of the operating system account
The Active Directory account used for the backup must be a member of the following security groups:
- Exchange Server 2007
- Microsoft Exchange Security \ Exchange Organization Administrators
- Microsoft Exchange Security \ Exchange Servers
- Users \ Domain Admins
- Exchange Server 2010
- Microsoft Exchange Security \ Organization Management
- Users \ Administrator
- Users \ Domain Admins
- Users \ Enterprise Admins
- Exchange Server 2007
Remote Exchange Management Shell
For setup on Exchange Server 2010, Remote Exchange Management Shell must be enabled for the operating system account used for the backup:
Enter the following command in Exchange Management Shell:
>Set-User "%os_username%" -RemotePowerShellEnabled $True
Mailbox enabled
The Active Directory account used for the backup must be have one or more Exchange Server mailboxes associated with it.
Public folder database
Ensure that the Public Folder Database is available and mounted in the Exchange Management Console. If the Public Folder Database does not exist, you can create an empty Public Folder Database.
Outlook Anywhere
Ensure that Outlook Anywhere is enabled with NTLM authentication.
IISAuthenticationMethods setting
Ensure that IISAuthenticationMethods is not set to {Basic} only.
Enter the following command in Exchange Management Shell to check on the IISAuthenticationMethods setting:
>Get-OutlookAnywhere
If it is set to {Basic} only, enter the following command to modify the setting:
>Set-OutlookAnywhere -Identity:"%Server%\Rpc (Default Web Site)" -IISAuthenticationMethods Basic,NTLM,Negotiate
- Reboot the Exchange server afterward.
LAN Manager authentication level
Ensure that the LAN Manager authentication level is configured to use NTLMv2, for example:
- Send NTLMv2 response only
- Send NTLMv2 response only. Refuse LM
Send NTLMv2 response only. Refuse LM & NTLM
Collaboration Data Objects (CDO) 1.2.1 installation
MAPI Collaboration Data Objects (CDO) 1.2.1 must be installed on the Exchange server.
Create Backupset
With all requirements checked, you can create the Exchange mail level backup set:
- Login to the AhsayOBM client user interface.
Select the 'Backup Sets' tile, and the 'Add' button.
Select 'MS Exchange Mail Level Backup' backup set type, and the corresponding Exchange Version. Then enter the backup set name:
Configure the backup source of the backup set, select all mailboxes within the mailbox store by selecting the Mailbox Store:
To select individual mailbox for backup, expand the Mailbox Store. Click 'Show mails' to select individual mail items to be backup:
- Click 'OK' afterward.
Click 'Add new storage destination / destination pool' to add the cloud storage destination.
It is strongly recommended that all backup sets are configured to backup to multiple backup destinations, to provide user with data redundancy and backup / restore flexibility.- Continue by configuring a backup schedule and encryption setting for the backup set.
- Click the 'Backup now' button to start the initial backup job, or allow the job to start at its scheduled time.