In case you haven't learned your lesson yet -- BACKUP YOUR DATA! I had a recent scare (failed sound card install) that cost me 2 nights of agony. I did manage to "repair" the system, but I was literally on the verge of reinstalling XP; thus agreeing to flush lots of my data. Yes, that means my EFS cert, my encrypted files and lots of app configs that weren't backed up in the past 4 months!
(I think my repaired system is almost 100%; Likely only small sound issues remain due to the failed sound card install)
My ideal goal was to get an automated backup solution that would work in case I had to totally rebuild the system. XP provides NTBackup. There is even a nice feature called an ASR backup. Along with a floppy you can rebuild your system. The problem is you can't automate an ASR backup. So I had to settle on regular backups of the System State and weekly C drive backups.
I've finally learned how to deal with DCOM permissions. With SP1/SP2 they've apparently changed enough to cause lots of trouble with Scheduled Tasks on XP.
I've always had issues running Backups via Scheduled Tasks. The latest issue was that my "Backup Operator" account could manually run (by right clicking) a NTBackup scheduled task (via Control Panel), but the scheduled task would not execute (properly) when run by anyone else with "permisisons" to run the scheduled task.
I received errors like the following. Note the CLSID mentioned in each.
Event Type: Error
Event Source: DCOM
Event ID: 10016
User: COMPUTERNAME\backupuser
Computer: COMPUTERNAME
Description:
The machine-default permission settings do not grant Local Activation permission for the COM Server application with CLSID
{0022DFD7-0469-49FF-BDD4-192CB402F5C6}
to the user COMPUTERNAME\backupuser SID (ENTER YOUR SID HERE). This security permission can be modified using the Component Services administrative tool.
AND
Event Type: Error
Event Source: DCOM
Event ID: 10016
User: COMPUTERNAME\backupuser
Computer: COMPUTERNAME
Description:
The machine-default permission settings do not grant Local Activation permission for the COM Server application with CLSID
{E579AB5F-1CC4-44B4-BED9-DE0991FF0623}
to the user COMPUTERNAME\backupuser SID (ENTER YOUR SID HERE). This security permission can be modified using the Component Services administrative tool.
These indicate that you need to grant associated DCOM permisisons to the user account (or simply the Backup Operators group) used for running the Scheduled Task.
How to fix NTBackup DCOM Permissions
- Run dcomcnfg.exe as an administrator on the PC.
- Double click "Component Services".
- Double click "Computers".
- Double click "My Computer".
- Double click "DCOM Config".
- Select "View/Detail" to display all the items in a single column format.
- On the right side, scroll down until you locate "Removable Storage Manager".
- Right click "Volume Shadow Copy Service" and click on "Properties".
- Click on the "Security" tab across the top of the new window.
- Under the first section "Launch and Activation Permissions", click "Customize". This "un-grays" the "Edit" button to the right.
- Click the "Edit" button to the right of this.
- In the new window which appears, click "Add...".
- Another windows pops up. Click "Advanced".
- Click "Find Now".
- Scroll until you locate the user account (or group) that you want to run the NTBackup Scheduled Task as. Click once on that user or group.
- Click OK twice.
- Notice at the top of the current window, this user or group is selected.
- In the bottom half, check the box in the "Allow column" that is directly to the right of "Local Activation". Leave the "Local Launch" checkbox checked.
- Click OK twice.
- Repeat steps 7 - 19 for "Volume Shadow Copy Service"
- Try to run the Scheduled Task via the "Scheduled Tasks" Control Panel entry as another administrative account.
- If it fails, reboot and try again.
- If it works, you too now now the power of DCOM permissions.