Your suggested change has been received. Thank you.

close

Suggest A Change

https://thales.na.market.dpondemand.io/docs/dpod/services/kmo….

Thales Logo

All

  • All
back

Encrypt Active Directory Database with Secure Start

Other Use Cases

search

Please Note:

Other Use Cases

Using Secure Start GuardPoints, you can also secure an SQL Server on Microsoft Azure in certain scenarios. SQL system services in Azure also boot earlier in the boot sequence than the VMD (Vormetric Daemon) agent service.

Note

To determine if another application qualifies, contact Thales technical support.

Boot a Windows Server in Azure

To move and guard the AD database, you must boot the AD server into DSRM mode.

To boot a Windows Server 2012/2016 Domain Controller into DSRM remotely in Azure:

Note

The Windows Server 2012/2016 domain controller must be running and accessible through Windows Remote Desktop.

  1. Establish a Remote Desktop session on the domain controller.

  2. Open an command prompt as Administrator and type: 

     > bcdedit /set safeboot dsrepair

  3. Reboot the domain controller. The Remote Desktop session disconnects.

  4. Wait a few minutes, then establish a new Remote Desktop session. The domain controller will be running in DSRM.

  5. To reboot into normal mode, open an command prompt as Administrator and type: 

     > bcdedit /deletevalue safeboot

  6. Reboot the domain controller.

On this page