Chat now with support
Chat mit Support

Recovery Manager for AD 10.2 - User Guide

Overview Getting started
Permissions required to use Recovery Manager for Active Directory Recovery Manager Console Getting and using help Configuring Windows Firewall Using Computer Collections Managing Recovery Manager for Active Directory configuration Licensing
Backing up data
Permissions required for the Backup operation Managing Backup Agent Using a least-privileged user account to back up data Using Managed Service Accounts Active Directory backups vs Windows System State backups Creating BMR and Active Directory backups Using the Backup Wizard Retrying backup creation Enabling backup encryption Backing up AD LDS (ADAM) Backing up cross-domain group membership Backing up distributed file system (DFS) data Backup scheduling Setting performance options Setting advanced backup options Unpacking backups Using e-mail notification Viewing backup creation results
Restoring data
Getting started with Active Directory recovery Managing deleted or recycled objects Restoring backed up Active Directory components Integration with Change Auditor for Active Directory Using granular online restore Restoring AD LDS (ADAM) Selectively restoring Active Directory object attributes Restoring objects in an application directory partition Restoring object quotas Restoring cross-domain group membership Performing a restore without having administrator privileges Reports about objects and operations Using complete offline restore Offline restore implications Restoring SYSVOL authoritatively Performing a granular restore of SYSVOL Recovering Group Policy Restoring data from third-party backups Using the Extract Wizard Restoring passwords and SID history
Full Replication Consolidating backup registration data Monitoring Recovery Manager for Active Directory Using Management Shell Collecting diagnostic data for technical support Using Recovery Manager for Active Directory web portal Appendices
Frequently asked questions Best practices for using Computer Collections Best practices for creating backups Ports Used by Recovery Manager for Active Directory Backup Wizard Online Restore Wizard Online Restore Wizard for AD LDS (ADAM) Group Policy Restore Wizard Repair Wizard Extract Wizard Technical characteristics Events generated by Recovery Manager for Active Directory Descriptions of PowerShell commands
Add-RMADBackup Add-RMADCollectionItem Add-RMADReplicationConsole Add-RMADStorageServer Backup-RMADCollection Compare-RMADObject Convert-RMADBackup ConvertTo-RMADRecycledObject Create-RMADStorageAgentSetup Expand-RMADBackup Export-RMADBackup Export-RMADSecureStorageBackup Get-RMADBackup Get-RMADBackupAgent Get-RMADBackupInfo Get-RMADBackupObject Get-RMADBackupSecurityStatus Get-RMADCollection Get-RMADCollectionItem Get-RMADDeletedObject Get-RMADGlobalOptions Get-RMADLicenseInfo Get-RMADObject Get-RMADReplicationConsole Get-RMADReplicationSchedule Get-RMADReplicationSession Get-RMADReplicationSessionItem Get-RMADReportObject Get-RMADReportObjectAttributes Get-RMADReportObjectChildren Get-RMADReportSession Get-RMADSession Get-RMADSessionItem Get-RMADSessionItemEvent Get-RMADStorageServer Get-RMADStorageServerHardeningStatus Get-RMADStorageServerRetentionPolicy Import-RMADBackup Install-RMADBackupAgent New-RMADCollection New-RMADSchedule Protect-RMADSecureStorageServer Publish-RMADBackupSecurityStatus Refresh-RMADStorageServer Register-RMADSecureStorageBackups Remove-RMADBackup Remove-RMADBackupAgent Remove-RMADCollection Remove-RMADCollectionItem Remove-RMADReplicationConsole Remove-RMADReplicationSchedule Remove-RMADReplicationSession Remove-RMADStorageServer Remove-RMADUnpackedComponent Rename-RMADCollection Restore-RMADDeletedObject Restore-RMADDomainController Restore-RMADObject Set-RMADCollection Set-RMADGlobalOptions Set-RMADReplicationConsole Set-RMADReplicationSchedule Set-RMADStorageServerRetentionPolicy Start-RMADReplication Start-RMADReportViewer Test-RMADSecureStorageBackup Unprotect-RMADStorageServer Update-RMADBackupAgent Update-RMADLicense

Remote Storage tab

NOTE

When the backup is triggered and any specified backup path is not available, no backup is created, neither in the Remote Storage nor in the Local Storage. The backup creation session will fail

This tab includes the following elements:

  • Save backups on the backed up DC or a UNC share. Select this check box to save backup files either on the domain controller being backed up, on the Universal Naming Convention (UNC) share you specify. Enter the location for backup files. If you specify a UNC share, backup files will be directly streamed to that share from Backup Agent installed on the DC being backed up. Backup Agent accesses the DC being backed up and/or the specified UNC share under the account specified on the Agent Settings tab.

  • Backup path. Use the provided space to specify format for paths and names of files where to store backups. If you want to store backups on remote computers, the path must include UNC names. The path format may include optional expressions that enable the automatic creation of subfolders. The file name format may also include expressions. For example, you might specify \\RemoteHost\ShareName\%COMPUTERNAME%\%DATETIME%.

  • Expression. Click this button to specify path and file name notations in Backup path or Alternative backup path (optional). You can choose the following expressions:

    • Domain (%DOMAIN%). Name of the home domain of the computer being backed up.

    • Computer name (%COMPUTERNAME%). Name of the computer being backed up.

    • Date and Time (%DATETIME%). Date and time of the backup creation.

  • Sample path. View an example of the path and file name that matches the format string supplied in Backup path or Alternative backup path (optional).

  • Alternative backup path (optional).

IMPORTANT

According to the Forest Recovery best practices, the RMAD Active Directory backup should be stored on a domain controller. At the same time, the Alternative backup path option allows you to store the same Active Directory backup on remote backup storage. This can be useful if the DC is destroyed and you want to restore it from a BMR backup and the latest Active Directory backup. The retention policy is applied to both backup paths. So, if you set it to 10, and you have both paths configured - it means that there will be 5 backups on DC and 5 backups on the remote storage.

  • Save a backup copy on a secure storage server - Allows you to select the DNS name or IP address of a Secure Storage host.

  • Use the following account to access the backup storage. Allows you to explicitly specify a user account that will be used to access the backup storage. This option lets you work with network shares from different security realms, such as Azure Files or Linux shares.

NOTE

The backup storage account is used to access all remote storage backup locations. Currently, separate access accounts are not supported.

  • For each computer, delete all backups except the last (Number). Select this check box to retain a number of backups for each computer. Specify the number of backups to maintain. It is recommended to configure a backup retention policy to maintain backups created in the last two weeks . If you create backups on a daily basis specify 14 to maintain backups for each domain controller for two weeks.

This check box can be selected only when Recovery Manager for Active Directory stores backups separately. To ensure that Recovery Manager for Active Directory does so, add the %DATETIME% expression to the path or file name in the Backup file name format box.

 

Unpacked Backups tab

This tab allows you to override the global (or default) settings used to automatically unpack backups for all Computer Collections.

On this tab, you can use the following elements:

  • Use global settings. Specifies to use the global settings to automatically unpack each backup upon its creation.

  • Unpack each backup upon its creation. Allows you to configure settings specific to the Computer Collection to automatically unpack each backup upon its creation. In this option, you can specify the number of recent backup creation sessions from which you want to keep unpacked backups for each domain in the Computer Collection or select the domain controllers you need. Other backups created for the Computer Collection will be automatically deleted.

  • Do not unpack backups. Specifies not to unpack backups created for the Computer Collection.

For more information on managing unpacked backups, see Unpacking backups.

 

Container and site properties

For a container such as an Active Directory domain, organizational unit, or site added to a Computer Collection, the properties are used to specify an explicit list of the domain controllers or AD LDS (ADAM) instances for which backups are not to be created.

To view and modify properties for a container or site

  1. In the Recovery Manager Console tree, select the Computer Collection that holds the container or site.

  2. In the details pane, click the container or site, and then click Properties on the Action menu.

The next subsections provide descriptions for the following:

 

Properties for a domain or organizational unit

The Properties dialog box for a domain or organizational unit added to a Computer Collection includes the following elements:

  • Exclusion list. Lists domain controllers that reside in the selected container for which backups are not to be created when backing up the Computer Collection. In the list, each entry includes the following fields:

    • Name. Displays the name of domain controller.

    • Site. Displays the name of the site in which domain controller is located.

  • Modify. Opens a dialog box that allows you to modify the Exclusion list. The dialog box includes the following elements:

    • Available domain controllers. Lists domain controllers to be backed up when backing up Computer Collection. To exclude domain controllers from backup, select them in the list, and then click Add.

    • Domain controllers excluded from backup. Lists domain controllers excluded from backup when backing up Computer Collection. To have Recovery Manager for Active Directory back up domain controllers, select them in the list, and then click Remove.

    • Add. Adds domain controllers selected in Available domain controllers to the Domain controllers excluded from backup list.

    • Add All. Adds all domain controllers from Available domain controllers to the Domain controllers excluded from backup list.

    • Remove. Moves the domain controllers selected in Domain controllers excluded from backup to the Available domain controllers list.

    • Remove All. Clears the Domain controllers excluded from backup list. After you click this button, the list Available domain controllers will include all domain controllers that are located in the selected OU or domain.

 

Verwandte Dokumente

The document was helpful.

Bewertung auswählen

I easily found the information I needed.

Bewertung auswählen