Manualshelf

User`s guide

ManualsBrandsACRONIS ManualsSoftwareBackup & Recovery 10 Advanced Server SBS Edition
71727374757677787980
72 Copyright © Acronis, Inc., 2000-2009
Recommendations on user accounts
To allow users to access the centralized vaults managed by a storage node, you must ensure that
those users have a right to access the storage node from the network.
If both the users' machines and the machine with the storage node are in one Active Directory
domain, you probably do not need to perform any further steps: all users are typically members of
the Domain Users group and so can access the storage node.
Otherwise, you need to create user accounts on the machine where the storage node is installed. We
recommend creating a separate user account for each user who will access the storage node, so that
the users are able to access only the archives they own.
When creating the accounts, follow these guidelines:
For users whom you want to act as storage node administrators, add their accounts to the
Administrators group.
For other users, add their user accounts to the Users group.
Additional right of machine administrators
A user who is a member of the Administrators group on a machine can view and manage any archives
created from that machine in a managed vaultregardless of the type of that user's account on the
storage node.
Example
Suppose that two users on a machine, UserA and UserB, perform backups from this machine to a
centralized vault managed by a storage node. On the storage node, let these users have regular (non-
administrative) accounts UserA_SN and UserB_SN, respectively.
Normally, UserA can access only the archives created by UserA (and owned by UserA_SN), and UserB
can access only the archives created by UserB (and owned by UserB_SN).
However, if UserA is a member of the Administrators group on the machine, this user can additionally
access the archives created from this machine by UserBeven though UserA's account on the
storage node is a regular one.
2.11.7.6. Management server administrator rights
Normally, the Acronis Backup & Recovery 10 Management Server administrator operates on a
registered machine on behalf of the Acronis Managed Machine Service (also known as the Acronis
service) on that machine and has the same privileges as the service has.
Alternatively, when creating a backup policy, the management server administrator has the option to
explicitly specify a user account under which the centralized backup plans will run on the registered
machines. In this case, the user account must exist on all the machines to which the centralized policy
will be deployed. This is not always efficient.
To be a management server administrator, the user must be a member of the Acronis Centralized
Admins group on the machine where the management server is installed.