Hyper-V Backup VSS Error 0x80070539 – Event ID 8193 – ConvertStringSidToSid

Altaro
December 14, 2012

Save to My DOJO

Table of contents

  1. Troubleshooting Steps
  2. Solution

A customer using Altaro Hyper-V Backup on a Windows 2008 R2 Standard SP1 contacted us to report that his attempts to back up a Virtual Machine failed due to a VSS error. Here’s how we helped him to resolve the issue.

Troubleshooting Steps

We began troubleshooting by collecting the Altaro Error Logs, Windows Application and System Event Logs, and dumps of the VSS Writers and Providers from the Hyper-V host and from the Guest VM. From the Altaro Error logs we saw that the VSS request was failing with the error VSS_E_WRITERERROR_RETRYABLE (0x800423F3L). With this verification that we were dealing with VSS errors, we searched for specific details in the Windows Event Logs. Upon opening the customer’s Application Event Log we immediately saw a VSS error.

The error event in the Application Log was Event ID 8193 and source: VSS.

Event ID: 22 Source: VSS Level: Error
Volume Shadow Copy Service error: Unexpected error calling routine ConvertStringSidToSid(S-1-5-21-2260117687-676807078-2219218452-500.bak).  hr = 0x80070539, The security ID structure is invalid.
.Operation:
OnIdentify event
Gathering Writer DataContext:
Execution Context: Shadow Copy Optimization Writer
Writer Class Id: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
Writer Name: Shadow Copy Optimization Writer
Writer Instance ID: {524af32c-07ca-4c34-b2e5-d050918df354}

.
In this case we found the issue was that the SID being referenced in the event could not be resolved. This was due to a “.bak” entry inside the following registry sub tree:Beginning with Windows Vista and Windows Server 2008, the Shadow Copy Optimization Writer deletes certain files from volume shadow copies. This is done to minimize the impact of Copy-on-Write I/O during regular I/O on these files on the shadow-copied volume. The files that are deleted are typically temporary files or files that do not contain user or system state.

HKey_Local_MachineSoftwareMicrosoftWindows NTCurrentVersionProfileList

Removing the invalid entry from the registry solved the issue and VSS was successful.

Solution

  1. On the problematic machine, open the Registry Editor
  2. Browse to HKLMSoftwareMicrosoftWindows NTCurrentVersionProfileList
  3. Check for any entries that have a “.bak” value appended. If so, this may be cause the failure when trying to resolve the SID of the writer.
  4. Please backup the registry key first, and then delete the entry with the extra “.bak”
  5. Reboot the problematic machine
  6. Re-try the backup

 

Altaro Hyper-V Backup
Share this post

Not a DOJO Member yet?

Join thousands of other IT pros and receive a weekly roundup email with the latest content & updates!

Leave a comment or ask a question

Your email address will not be published. Required fields are marked *

Your email address will not be published. Required fields are marked *

Notify me of follow-up replies via email

Yes, I would like to receive new blog posts by email

What is the color of grass?

Please note: If you’re not already a member on the Dojo Forums you will create a new account and receive an activation email.

More in this category

How to repair a broken NIC configuration in Azure

How to repair a broken NIC configuration in Azure

How to Quickly Recover and Restore Windows Server Hyper-V Backups

How to Quickly Recover and Restore Windows Server Hyper-V Backups

RTO and RPO: Understanding Disaster Recovery Times

RTO and RPO: Understanding Disaster Recovery Times

More from this author

It’s Time to Recognize the Real Value of System Admins

It’s Time to Recognize the Real Value of System Admins

Future-Proofing your Datacenter with Microsoft Azure Stack

Future-Proofing your Datacenter with Microsoft Azure Stack

New in Altaro VM Backup – Offsite Backup to Azure

New in Altaro VM Backup – Offsite Backup to Azure

About the Author

author

Altaro

View Full Profile