Chat now with support
Chat mit Support

Recovery Manager for AD 10.2.2 - User Guide

Overview Getting started
Permissions required to use Recovery Manager for Active Directory Recovery Manager Console Getting and using help Configuring Windows Firewall Using Computer Collections Hybrid Recovery with On Demand Recovery Managing Recovery Manager for Active Directory configuration Licensing
Backing up data
Permissions required for the Backup operation Managing Backup Agent Using a least-privileged user account to back up data Using Managed Service Accounts Active Directory backups vs Windows System State backups Creating BMR and Active Directory backups Using the Backup Wizard Retrying backup creation Enabling backup encryption Backing up AD LDS (ADAM) Backing up cross-domain group membership Backing up distributed file system (DFS) data Backup scheduling Setting performance options Setting advanced backup options Unpacking backups Using e-mail notification Viewing backup creation results
Restoring data
Getting started with Active Directory recovery Managing deleted or recycled objects Restoring backed up Active Directory components Integration with Change Auditor for Active Directory Using granular online restore Restoring AD LDS (ADAM) Selectively restoring Active Directory object attributes Restoring objects in an application directory partition Restoring object quotas Restoring cross-domain group membership Performing a restore without having administrator privileges Reports about objects and operations Using complete offline restore Offline restore implications Restoring SYSVOL authoritatively Performing a granular restore of SYSVOL Recovering Group Policy Restoring data from third-party backups Using the Extract Wizard Restoring passwords and SID history
Full Replication Consolidating backup registration data Monitoring Recovery Manager for Active Directory Using Management Shell Collecting diagnostic data for technical support Appendices
Frequently asked questions Best practices for using Computer Collections Best practices for creating backups Ports Used by Recovery Manager for Active Directory Backup Wizard Online Restore Wizard Online Restore Wizard for AD LDS (ADAM) Group Policy Restore Wizard Repair Wizard Extract Wizard Technical characteristics Events generated by Recovery Manager for Active Directory

General tab

The General tab displays general information about the selected backup.


Restoring data


Getting started with Active Directory recovery

This section provides important information about performing data recovery operations with Recovery Manager for Active Directory (RMAD). Please read it carefully before you start using the product to restore Active Directory® data.

This section covers:


Active Directory recovery options

Recovery Manager for Active Directory (RMAD) enables the fast recovery of Active Directory® from a disaster. The flowchart below indicates the most suitable recovery method depending on the type of disaster, which could be data corruption, database corruption, or complete Active Directory® corruption.

Data corruption occurs when directory objects have been inadvertently deleted or modified, and the deletion or modification has replicated to other domain controllers within the environment.

Database corruption refers to a situation in which an Active Directory® failure prevents a domain controller from starting in normal mode, or a hardware problem such as hard disk corruption on a domain controller.

Figure: Active Directory® Recovery Options

RMAD offers the following recovery methods:

  • Granular online restore

  • Complete offline restore

Granular online restore allows you to restore individual directory objects from a backup, without restarting the target domain controller or affecting other directory objects. It will not be necessary to shut down the domain controller in order to perform the restore: it remains online and functional throughout the recovery.

Complete offline restore only allows you to restore the entire Active Directory® database on a domain controller while Active Directory® is offline. To take Active Directory® offline, RMAD restarts the domain controller in Directory Services Restore Mode (DSRM), resulting in a period of downtime. In addition, complete offline restore affects all directory objects on the target domain controller, which may result in the loss of some of the most recent updates.

All restore operations are remotely administered, so there is no need for an administrator to be physically present at the domain controller.

Granular online restore

To achieve near-zero downtime when recovering Active Directory®, RMAD provides the granular online restore method. Two options are available with this method:

  • Compare, restore, and report changes in Active Directory®. With this option, you can restore particular objects from a backup, and select the necessary objects based on a per-attribute comparison of the objects in a backup with those in Active Directory®. Comparison reports are also available.

  • Compare two backups and report differences. With this option, you can make a per-attribute comparison of the objects in two Active Directory® backups. Comparison reports allow you to view the object modifications made in the period between the backups.

For details, see Using granular online restore.

Undeleting (reanimating) objects

With RMAD, you can selectively recover deleted Active Directory® objects by undeleting (reanimating) them. To undelete (reanimate) an object, RMAD fully relies on the functionality provided by Active Directory®, therefore to use this method you need no Active Directory® backups. Note that you can only undelete objects in an Active Directory® forest whose functional level is higher than Windows 2000.

For more information, refer Managing deleted or recycled objects.

Complete offline restore

You can use complete offline restore to restore the entire Active Directory database from backup media without reinstalling the operating system or reconfiguring the domain controller. The restore can be performed on any domain controller that can be accessed remotely. By default, this operation restores all directory objects on the target domain controller non-authoritatively. This means that the restored data is then updated via normal replication. A non-authoritative restore is typically used to restore a domain controller that has completely failed due to hardware or software problems.

For details, see Using complete offline restore.


Verwandte Dokumente

The document was helpful.

Bewertung auswählen

I easily found the information I needed.

Bewertung auswählen