Step 5: Perform Pre-backup Operations

In this step, we will perform some pre-backup operations. This will include backing up the SQL databases, and backing up the FIM Service using the new Configuration Backup tool provided in FIM 2010 R2, and backing up the FIM Synchronization Encryption Key and Server Configuration.

  • Create a backup folder.

  • Backup the FIM Synchronization Service Encryption Key

  • Backup the FIM Synchronization Service Server Configuration

  • Backup the FIM Service Configuration

  • Backup the FIM Synchronization Service and FIM Service databases

Create a backup folder

In this step we will create a backup folder and share it out so that it can be accessed from other servers. This will allow us to keep all of our backed up items together.

To create a backup folder

  1. Log on to FIM1 as CORP\Administrator

  2. Click Start, select Computer, and double-click Local Disk (C:).

  3. At the top, select New Folder and rename the FIMBackups.

  4. Right-click the FIMBackups folder and select Properties.

  5. At the top, click the Sharing tab.

  6. Click Share. This will bring up a File Sharing Window. Administrator should already be listed with Read/Write permissions. Click Share again.

  7. Click Done.

  8. Close FIMBackups Properties.

Backup the FIM Synchronization Service Encryption Key

In this procedure we are going to backup the FIM Synchronization Service Encryption key.

To back up the FIM Synchronization Service encryption key

  1. Log on to FIM1 as CORP\Administrator

  2. Click Start, select All Programs, click Microsoft Forefront Identity Manager, and click Synchronization Service Key Management. This will bring up the Microsoft Identity Server Key Management Utility.

  3. Ensure that Export Key Set is selected, and then click Next.

    Export key

  4. Next to Account Name enter FIMSynchService

  5. Next to Password enter Pass1word$

  6. Next to Domain enter CORP

    Export key creds

  7. Click the “…” ellipsis button and navigate to the FIMBackups folder on C:\. Save. Click Next.

    export key save path

  8. Verify the backup location and then click Finish.

  9. When the backup is confirmed, click Close.

    export key success

    Note

    As a best practice, the encryption key backup should be stored in a different location than the FIM Synchronization Service database.

Backup the FIM Synchronization Service Server Configuration

In this procedure we are going to backup the FIM Synchronization Service Server Configuration.

To back up the FIM Synchronization Service Server Configuration

  1. Log on to FIM1 as CORP\Administrator

  2. Click Start, select All Programs, click Microsoft Forefront Identity Manager, and click Synchronization Service. This will bring up the Forefront Identity Synchronization Service.

  3. At the top, click File and select Export Server Configuration. You will be prompted with a windows that says not to run any management agents or modify the server settings. Click OK.

  4. This will bring up a Browse For Folder dialog. Navigate to the FIMBackups folder on C:\. Click Make New Folder and rename it ServerConfig. Click OK.

  5. Once this has completed, click OK.

    server config

Backup the FIM Service and Portal Configuration

In this procedure we are going to backup the FIM Service Configuration.

To backup the FIM Service and Portal Configuration

  1. Log on to FIM1 as CORP\Administrator

  2. Click Start, select All Programs, select Accessories, and click Command Prompt.

  3. Navigate to the directory that has the FIM 2010 R2 binaries and proceed to the following location Service and Portal\Program Files\Microsoft Forefront Identity Manager\2010\Tools\ConfigurationBackup

  4. Type Microsoft.IdentityManagement.ConfigurationBackup.exe and hit enter.

  5. Once the backup completes, navigate to C:\Program Files\Microsoft Forefront Identity Manger\2010\Previous Configuration\FIM1\ (today's date and time) or (current timestamp)\ and notice the Portal, Service folders and the ConfigurationBackup.log.

    config backup

  6. Copy the folder with today’s date to C:\FIMBackups.

Backup the FIM Synchronization Service and FIM Service databases

In this procedure we are going to backup the FIM Synchronization Service and FIM Service databases.

To backup the FIM Synchronization Service and FIM Service databases

  1. Log on to APP1.corp.contoso.com as Administrator.

  2. Click Start, click All Programs, click Microsoft SQL Server 2008, and then click SQL Server Management Studio. This will launch SQL Server Management Studio.

  3. On the Connect to Server dialog box, under Server Type select Database Engine.

  4. On the Connect to Server dialog box, under Server name select APP1.

  5. On the Connect to Server dialog box, under Authentication select Windows Authentication.

  6. Click Connect. This should be successful and the database information will be displayed on the left. The SQL Server Agent should have a green arrow.

  7. On the left, expand Databases, right-click FIMService, and select Tasks, and the select Back Up…. This will bring up the Backup Database - FIMService screen.

    backup db

  8. Click OK.

  9. Once this has completed you will see a window that says the backup was successful. Click OK.

  10. On the left, under Databases, right-click FIMSynchronizationService, and select Tasks, and the select Back Up…. This will bring up the Backup Database - FIMService screen.

  11. Click OK.

  12. Once this has completed you will see a window that says the backup was successful. Click OK.

  13. Now, navigate to C:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\Backup

  14. Copy FIMService.bak and FIMSynchronizationService.bak to \\FIM1\FIMBackups