Protected File Access
Macrium Image Guardian will protect all existing local backup files from unauthorised modification or deletion. All such activity will be blocked with error 0x80070510 - Storage policy block.
Protected File Types
The following file extensions are protected by Macrium Image Guardian.
| Extension | Backup Type |
|---|---|
| .mrimg | Macrium Reflect image files |
| .mrbak | Macrium Reflect File and Folder backup files |
| .mrex | Macrium Reflect Exchange backup files |
| .mrsql | *Macrium reflect SQL backup files |
Windows File operations on Macrium Backup files
Macrium Image Guardian will block opening of backup files for modification or delete, The following lists some of the operations and special considerations if you are maintaining the location and life of Macrium backup files outside of Macrium Reflect.
- Windows Explorer Copy. New backup files can be created on a protected volume as the result of a Windows Explorer copy operation.
Copying a file to the same folder as the original will be blocked on local file systems. Duplicate files in the same folder is undesirable and should be avoided. The identity of the backup file will be duplicated and this can lead to unpredictable results in Macrium Reflect. DOS Commands. COPY, MOVE, and XCOPY. These commands will succeed where the result of the operation is a new file. Overwriting or deleting existing backup files files will fail.
RoboCopy. RoboCopy.exe can copy, move and synchronise folders. For more information on RoboCopy parameters please see here: https://technet.microsoft.com/en-us/library/cc733145(v=ws.11).aspx
Some RoboCopy parameters may perform delete file and overwrite operatons on your backup files and have special functionality in MIG if the 'Allow RoboCopy to sync and move backup files on protected volumes' option is enabled:
Parameter Rule /MOVE
/MOVIf the source folder is on a protected volume then the /MOVE /MOV parameters will only delete backup files in the source folder if the destination folder is also on a protected volume.
This ensures that existing files cannot be moved to an unprotected volume and compromised./MIR
/PURGEIf the target folder is on a protected volume then the the /MIR /PURGE parameters will only delete backup files in the target folder if both of the following conditions are true:
- The source folder is a backup destination in any saved backup definition xml file.
- The target folder is not a backup destination in any saved backup defintion xml file
This ensures that the synchronisation operation cannot inadvertently, or otherwise, delete files in a folder that is used as a backup destination in Macrium Reflect.
All overwrite operations If the result of any parameter is to overwrite an existing backup file on a protected volume then this will only be allowed if the target folder is not a backup destination in any saved backup definition xml file. RoboCopy and Network Shares
If the source of a /MOVE /MOV or target of a /MIR /PURGE operation is a MIG protected volume on a network share then all delete operations are blocked. This is because RoboCopy 'Rules' can only be applied if the Windows session that's opening the files is the same Windows session that's running RoboCopy. In the case of a network share, the remote computer is opening the files and will block all delete operations.