AWS Test Procedures:
Test Control Condition:
Launch an Instance by choosing Windows OS AMI
Create a local domain administrator account as admin and password as password
Join the computer to theKim Connect domain
Simulation 1: Recover from a Destroyed Instance
Copy AMI from running instance
Terminate original instance
Launch the copied instance
Attach the backup volumes from snapshots
Run these command from a local workstation that has Systernals installed:
Reset computer account password with domain controller
———- This procedure doesn’t work! ——————-
psexec \\mail01 -e -h -u mail01\admin -p password netdom resetpwd /s:dc01 /ud:kimconnect\admin /pd:password && shutdown -r -t 0
Re-attach volumes
psexec \\mail01 -e -h -u kimconnect\admin -p password diskpart /s “\\kimconnect.com\netlogon\activateDrives.txt”
Simulation 2: Recover from Autoscale Group instance reconstruction
Attach the instance to an AWS Autoscale Group (procedure to be detailed later)
Reboot the instance to simulate a “machine down” problem. A new instance would be launched by the Autoscale Group. The original instance should be terminated by that Autoscale Group. This new instance would have a “broken trust relationship” with the domain; thus, its computer password account should be reset with the following proceedure:
Reset computer account password with domain controller
psexec \\mail01 -e -h -u mail01\admin -p password netdom resetpwd /s:dc01 /ud:kimconnect\admin /pd:password && shutdown -r -t 0
Simulation 3: TBD
Categories: