Chat now with support
Chat mit Support

Recovery Manager for AD 10.2 - User Guide

Overview Getting started
Permissions required to use Recovery Manager for Active Directory Recovery Manager Console Getting and using help Configuring Windows Firewall Using Computer Collections Managing Recovery Manager for Active Directory configuration Licensing
Backing up data
Permissions required for the Backup operation Managing Backup Agent Using a least-privileged user account to back up data Using Managed Service Accounts Active Directory backups vs Windows System State backups Creating BMR and Active Directory backups Using the Backup Wizard Retrying backup creation Enabling backup encryption Backing up AD LDS (ADAM) Backing up cross-domain group membership Backing up distributed file system (DFS) data Backup scheduling Setting performance options Setting advanced backup options Unpacking backups Using e-mail notification Viewing backup creation results
Restoring data
Getting started with Active Directory recovery Managing deleted or recycled objects Restoring backed up Active Directory components Integration with Change Auditor for Active Directory Using granular online restore Restoring AD LDS (ADAM) Selectively restoring Active Directory object attributes Restoring objects in an application directory partition Restoring object quotas Restoring cross-domain group membership Performing a restore without having administrator privileges Reports about objects and operations Using complete offline restore Offline restore implications Restoring SYSVOL authoritatively Performing a granular restore of SYSVOL Recovering Group Policy Restoring data from third-party backups Using the Extract Wizard Restoring passwords and SID history
Full Replication Consolidating backup registration data Monitoring Recovery Manager for Active Directory Using Management Shell Collecting diagnostic data for technical support Using Recovery Manager for Active Directory web portal Appendices
Frequently asked questions Best practices for using Computer Collections Best practices for creating backups Ports Used by Recovery Manager for Active Directory Backup Wizard Online Restore Wizard Online Restore Wizard for AD LDS (ADAM) Group Policy Restore Wizard Repair Wizard Extract Wizard Technical characteristics Events generated by Recovery Manager for Active Directory Descriptions of PowerShell commands
Add-RMADBackup Add-RMADCollectionItem Add-RMADReplicationConsole Add-RMADStorageServer Backup-RMADCollection Compare-RMADObject Convert-RMADBackup ConvertTo-RMADRecycledObject Create-RMADStorageAgentSetup Expand-RMADBackup Export-RMADBackup Export-RMADSecureStorageBackup Get-RMADBackup Get-RMADBackupAgent Get-RMADBackupInfo Get-RMADBackupObject Get-RMADBackupSecurityStatus Get-RMADCollection Get-RMADCollectionItem Get-RMADDeletedObject Get-RMADGlobalOptions Get-RMADLicenseInfo Get-RMADObject Get-RMADReplicationConsole Get-RMADReplicationSchedule Get-RMADReplicationSession Get-RMADReplicationSessionItem Get-RMADReportObject Get-RMADReportObjectAttributes Get-RMADReportObjectChildren Get-RMADReportSession Get-RMADSession Get-RMADSessionItem Get-RMADSessionItemEvent Get-RMADStorageServer Get-RMADStorageServerHardeningStatus Get-RMADStorageServerRetentionPolicy Import-RMADBackup Install-RMADBackupAgent New-RMADCollection New-RMADSchedule Protect-RMADSecureStorageServer Publish-RMADBackupSecurityStatus Refresh-RMADStorageServer Register-RMADSecureStorageBackups Remove-RMADBackup Remove-RMADBackupAgent Remove-RMADCollection Remove-RMADCollectionItem Remove-RMADReplicationConsole Remove-RMADReplicationSchedule Remove-RMADReplicationSession Remove-RMADStorageServer Remove-RMADUnpackedComponent Rename-RMADCollection Restore-RMADDeletedObject Restore-RMADDomainController Restore-RMADObject Set-RMADCollection Set-RMADGlobalOptions Set-RMADReplicationConsole Set-RMADReplicationSchedule Set-RMADStorageServerRetentionPolicy Start-RMADReplication Start-RMADReportViewer Test-RMADSecureStorageBackup Unprotect-RMADStorageServer Update-RMADBackupAgent Update-RMADLicense

Add-RMADBackup

external help file: QuestSoftware.RecoveryManager.AD.PowerShell.dll-Help.xml
Module Name: Quest.RecoveryManager.AD.PowerShell
online version:

schema: 2.0.0

SYNOPSIS

Registers a backup in the Recovery Manager database.

SYNTAX

BackupInfo

Add-RMADBackup [-InputObject] <BackupInfo[]> [-SkipAlreadyRegistered] [-BackupPassword <SecureString>]
 [-UseLegacyEncryption] [-IgnoreReadOnly] [-InformationAction <ActionPreference>]
 [-InformationVariable <String>] [<CommonParameters>]

Bkf

Add-RMADBackup [-Path] <String[]> [-BackupPassword <SecureString>] [-UseLegacyEncryption] [-IgnoreReadOnly]
 [-InformationAction <ActionPreference>] [-InformationVariable <String>] [<CommonParameters>]

OfflineDit

Add-RMADBackup [-Path] <String[]> [-SysvolPath <String[]>] [-ResolveIndexes <Boolean>] [-OfflineDit]
 [-IgnoreReadOnly] [-InformationAction <ActionPreference>] [-InformationVariable <String>] [<CommonParameters>]

DESCRIPTION

Registers specified backup in the Recovery Manager database.
Use the -InputObject parameter to specify the backup to register.

EXAMPLES

Example

PS C:\> $b = Get-ChildItem "C:\Backups" -Filter *.bkf -Recurse | Get-RMADBackupInfo

C:\PS>Add-RMADBackup $b

The first line of this example gets the backups held in the C:\Backups folder and its subfolders, and saves the backup objects in the $b variable.
The second line of this example registers the backup objects in the Recovery Manager database.

PARAMETERS

-InputObject

Accepts a backup object as input to the cmdlet.
Enter a variable that contains the objects or type a command or expression that gets the objects.

Type: BackupInfo[]
Parameter Sets: BackupInfo
Aliases:

Required: True
Position: 0
Default value: None
Accept pipeline input: True (ByValue)
Accept wildcard characters: False

-SkipAlreadyRegistered

Do not display the error message if the backup is registered.

Type: SwitchParameter
Parameter Sets: BackupInfo
Aliases:

Required: False
Position: Named
Default value: None
Accept pipeline input: False
Accept wildcard characters: False

-BackupPassword

Specifies the password to access a password-protected backup.
This is the same password that is set in the computer collection properties in the Recovery Manager console.

Type: SecureString
Parameter Sets: BackupInfo, Bkf
Aliases:

Required: False
Position: Named
Default value: None
Accept pipeline input: False
Accept wildcard characters: False

-UseLegacyEncryption

Allows you to work with backups encrypted by the RC4 algorithm from RSA, Inc.
(Microsoft RSA Base Provider).
This algorithm is used to back up Windows Server 2003/2003 R2 domain controllers in Recovery Manager for Active Directory 8.2.x and 8.5.x.

Type: SwitchParameter
Parameter Sets: BackupInfo, Bkf
Aliases:

Required: False
Position: Named
Default value: None
Accept pipeline input: False
Accept wildcard characters: False

-IgnoreReadOnly

Allows you to perform the action in a console currently performing full replication.

Type: SwitchParameter
Parameter Sets: (All)
Aliases:

Required: False
Position: Named
Default value: None
Accept pipeline input: False
Accept wildcard characters: False

-Path

Path to the backup file.

Type: String[]
Parameter Sets: Bkf, OfflineDit
Aliases: FullName

Required: True
Position: 0
Default value: None
Accept pipeline input: True (ByPropertyName, ByValue)
Accept wildcard characters: False

-SysvolPath

Path to the SYSVOL folder.

Type: String[]
Parameter Sets: OfflineDit
Aliases:

Required: False
Position: Named
Default value: None
Accept pipeline input: False
Accept wildcard characters: False

-ResolveIndexes

Resolve the DIT file index.

Type: Boolean
Parameter Sets: OfflineDit
Aliases:

Required: False
Position: Named
Default value: None
Accept pipeline input: False
Accept wildcard characters: False

-OfflineDit

Specifies that the application registers the DIT file as a backup.

Type: SwitchParameter
Parameter Sets: OfflineDit
Aliases:

Required: True
Position: Named
Default value: None
Accept pipeline input: False
Accept wildcard characters: False

-InformationAction

@{Text=}

Type: ActionPreference
Parameter Sets: (All)
Aliases: infa

Required: False
Position: Named
Default value: None
Accept pipeline input: False
Accept wildcard characters: False

-InformationVariable

@{Text=}

Type: String
Parameter Sets: (All)
Aliases: iv

Required: False
Position: Named
Default value: None
Accept pipeline input: False
Accept wildcard characters: False

CommonParameters

This cmdlet supports the common parameters: -Debug, -ErrorAction, -ErrorVariable, -InformationAction, -InformationVariable, -OutVariable, -OutBuffer, -PipelineVariable, -Verbose, -WarningAction, and -WarningVariable. For more information, see about_CommonParameters.

INPUTS

OUTPUTS

NOTES

RELATED LINKS

 

Add-RMADCollectionItem

external help file: QuestSoftware.RecoveryManager.AD.PowerShell.dll-Help.xml
Module Name: Quest.RecoveryManager.AD.PowerShell
online version:

schema: 2.0.0

SYNOPSIS

Adds a new item to a Computer Collection.

SYNTAX

InputObject

Add-RMADCollectionItem [-InputObject] <ComputerCollection> [-DomainController <String>] [-Domain <String>]
 [-OU <String>] [-Container <String>] [-ADSite <String>] [-AdamSite <String>] [-AdamServer <String>]
 [-AdamHost <String>] [-Exclusions <String[]>] [-Credentials <PSCredential>] [-IgnoreReadOnly]
 [-InformationAction <ActionPreference>] [-InformationVariable <String>] [<CommonParameters>]

Name

Add-RMADCollectionItem -Name <String> [-DomainController <String>] [-Domain <String>] [-OU <String>]
 [-Container <String>] [-ADSite <String>] [-AdamSite <String>] [-AdamServer <String>] [-AdamHost <String>]
 [-Exclusions <String[]>] [-Credentials <PSCredential>] [-IgnoreReadOnly]
 [-InformationAction <ActionPreference>] [-InformationVariable <String>] [<CommonParameters>]

Id

Add-RMADCollectionItem -Id <Int32> [-DomainController <String>] [-Domain <String>] [-OU <String>]
 [-Container <String>] [-ADSite <String>] [-AdamSite <String>] [-AdamServer <String>] [-AdamHost <String>]
 [-Exclusions <String[]>] [-Credentials <PSCredential>] [-IgnoreReadOnly]
 [-InformationAction <ActionPreference>] [-InformationVariable <String>] [<CommonParameters>]

Domain

Add-RMADCollectionItem [-Domain <String>] [-Exclusions <String[]>] [-IgnoreReadOnly]
 [-InformationAction <ActionPreference>] [-InformationVariable <String>] [<CommonParameters>]

OU

Add-RMADCollectionItem [-OU <String>] [-Exclusions <String[]>] [-Credentials <PSCredential>] [-IgnoreReadOnly]
 [-InformationAction <ActionPreference>] [-InformationVariable <String>] [<CommonParameters>]

Container

Add-RMADCollectionItem [-Container <String>] [-Exclusions <String[]>] [-Credentials <PSCredential>]
 [-IgnoreReadOnly] [-InformationAction <ActionPreference>] [-InformationVariable <String>] [<CommonParameters>]

ADSite

Add-RMADCollectionItem [-ADSite <String>] [-Exclusions <String[]>] [-Credentials <PSCredential>]
 [-IgnoreReadOnly] [-InformationAction <ActionPreference>] [-InformationVariable <String>] [<CommonParameters>]

AdamServer

Add-RMADCollectionItem [-AdamSite <String>] [-AdamServer <String>] [-Credentials <PSCredential>]
 [-IgnoreReadOnly] [-InformationAction <ActionPreference>] [-InformationVariable <String>] [<CommonParameters>]

AdamSite

Add-RMADCollectionItem [-AdamSite <String>] [-Exclusions <String[]>] [-Credentials <PSCredential>]
 [-IgnoreReadOnly] [-InformationAction <ActionPreference>] [-InformationVariable <String>] [<CommonParameters>]

DESCRIPTION

Adds a new item to the Computer Collection that has the specified name or is represented by the specified objects.

EXAMPLES

Example 1

PS C:\> Add-RMADCollectionItem -Name Collection1 -DomainController dc1.dom1.local

Adds the dc1.dom1.local domain controller to the computer collection named Collection1.

Example 2

PS C:\> $c = Get-RMADCollection Collection1

C:\PS>Add-RMADCollectionItem -InputObject $c -Domain dom1.local

In the first line of this example, the Get-RMADCollection cmdlet gets the computer collection object named Collection1 and saves it in the $c variable.
In the second line, the Add-RMCollection cmdlet adds the dom1.local domain to the Computer Collection object saved in the $c variable.

Example 3

PS C:\> Add-RMADCollectionItem -Name Collection1 -OU "OU=Tokens,OU=Defender,DC=prod,DC=quest,DC=corp"

Adds an OU to the Computer Collection.

Example 4

PS C:\> Add-RMADCollectionItem -Name Collection1 -Container "CN=Computers,DC=prod,DC=quest,DC=corp"

Adds a container to the Computer Collection.

Example 5

PS C:\> $dn = "CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=prod,DC=quest,DC=corp"
Add-RMADCollectionItem -Name Collection1 -ADSite $dn -Exclusions @("ws1.prod.quest.corp:0")

Create an ADSite exclude from the domain controller (ws1.prod.quest.corp:0") and add it to the Computer Collection.

Example 6

PS C:\> $dn = "CN=Default-First-Site-Name,CN=Sites,CN=Configuration,CN={7B1308BE-06B9-4925-BEF5-C323292279F5}"
Add-RMADCollectionItem -Name Collection1 -AdamServer ws1.prod.quest.corp:389 -AdamSite dn

Create an AdamSite and add it to the Computer Collection.

PARAMETERS

-InputObject

Specifies the object representing the Computer Collections to which you want to add items.
Enter a variable that contains the objects or type a command or expression that gets the objects.

Type: ComputerCollection
Parameter Sets: InputObject
Aliases: Collection

Required: True
Position: 0
Default value: None
Accept pipeline input: True (ByValue)
Accept wildcard characters: False

-DomainController

Specifies the DNS name of the domain controller to be added to the Computer Collection.

Type: String
Parameter Sets: InputObject, Name, Id
Aliases:

Required: False
Position: Named
Default value: None
Accept pipeline input: False
Accept wildcard characters: False

-Domain

Specifies the DNS name of the domain to be added to the Computer Collection.

Type: String
Parameter Sets: InputObject, Name, Id, Domain
Aliases:

Required: False
Position: Named
Default value: None
Accept pipeline input: False
Accept wildcard characters: False

-OU

Specifies the distinguished name of the organizational unit to be added to the Computer Collection.

Type: String
Parameter Sets: InputObject, Name, Id, OU
Aliases:

Required: False
Position: Named
Default value: None
Accept pipeline input: False
Accept wildcard characters: False

-Container

Specifies the distinguished name of the container to be added to the Computer Collection.

Type: String
Parameter Sets: InputObject, Name, Id, Container
Aliases:

Required: False
Position: Named
Default value: None
Accept pipeline input: False
Accept wildcard characters: False

-ADSite

Specifies the distinguished name of the Active Directory site to be added to the Computer Collection.

Type: String
Parameter Sets: InputObject, Name, Id, ADSite
Aliases:

Required: False
Position: Named
Default value: None
Accept pipeline input: False
Accept wildcard characters: False

-AdamSite

Specifies the distinguished name of the ADAM/AD LDS site to be added to the Computer Collection.
Use it in conjunction with AdamServer.

Type: String
Parameter Sets: InputObject, Name, Id, AdamServer, AdamSite
Aliases:

Required: False
Position: Named
Default value: None
Accept pipeline input: False
Accept wildcard characters: False

-AdamServer

Name of the AD LDS instance.

Type: String
Parameter Sets: InputObject, Name, Id, AdamServer
Aliases:

Required: False
Position: Named
Default value: None
Accept pipeline input: False
Accept wildcard characters: False

-AdamHost

Specifies the name of the server for the AD LDS instance installation.

Type: String
Parameter Sets: InputObject, Name, Id
Aliases:

Required: False
Position: Named
Default value: None
Accept pipeline input: False
Accept wildcard characters: False

-Exclusions

Excludes a specified domain controller from the collection items to be added.
The parameter must be used in conjunction with other paramters.

Type: String[]
Parameter Sets: InputObject, Name, Id, Domain, OU, Container, ADSite, AdamSite
Aliases:

Required: False
Position: Named
Default value: None
Accept pipeline input: False
Accept wildcard characters: False

-Credentials

Specifies the credentials for the account with which you want to connect.
Use the Get-Credential cmdlet provided by Windows PowerShell to pass a PSCredential object to this parameter.

Type: PSCredential
Parameter Sets: InputObject, Name, Id, OU, Container, ADSite, AdamServer, AdamSite
Aliases:

Required: False
Position: Named
Default value: None
Accept pipeline input: False
Accept wildcard characters: False

-IgnoreReadOnly

Allows you to perform the action in a console currently performing full replication.

Type: SwitchParameter
Parameter Sets: (All)
Aliases:

Required: False
Position: Named
Default value: None
Accept pipeline input: False
Accept wildcard characters: False

-Name

Specifies the name of the Computer Collection to which you want to add items.

Type: String
Parameter Sets: Name
Aliases:

Required: True
Position: Named
Default value: None
Accept pipeline input: False
Accept wildcard characters: False

-Id

Specifies the identifier of the Computer Collection to which you want to add items.

Type: Int32
Parameter Sets: Id
Aliases:

Required: True
Position: Named
Default value: None
Accept pipeline input: False
Accept wildcard characters: False

-InformationAction

@{Text=}

Type: ActionPreference
Parameter Sets: (All)
Aliases: infa

Required: False
Position: Named
Default value: None
Accept pipeline input: False
Accept wildcard characters: False

-InformationVariable

@{Text=}

Type: String
Parameter Sets: (All)
Aliases: iv

Required: False
Position: Named
Default value: None
Accept pipeline input: False
Accept wildcard characters: False

CommonParameters

This cmdlet supports the common parameters: -Debug, -ErrorAction, -ErrorVariable, -InformationAction, -InformationVariable, -OutVariable, -OutBuffer, -PipelineVariable, -Verbose, -WarningAction, and -WarningVariable. For more information, see about_CommonParameters.

INPUTS

OUTPUTS

NOTES

RELATED LINKS

 

Add-RMADReplicationConsole

external help file: QuestSoftware.RecoveryManager.AD.PowerShell.dll-Help.xml
Module Name: Quest.RecoveryManager.AD.PowerShell
online version:

schema: 2.0.0

SYNOPSIS

Adds a RMAD console as a replication source.

SYNTAX

Add-RMADReplicationConsole [-ComputerName] <String> [-Mode] <ReplicationMode>
 [-AccessCredential <PSCredential>] [-FallbackCredential <PSCredential>]
 [-InformationAction <ActionPreference>] [-InformationVariable <String>] [<CommonParameters>]

DESCRIPTION

RMAD console can synchronize the backups, collections, global options, schedules, Secure Storage servers and backups stored on Secure Storage servers from the consoles in the replication console list manually or on schedule.

EXAMPLES

Example 1

PS C:\> C:\>$credential = Get-Credential
C:\>Add-RMADReplicationConsole Hostname1 -AccessCredential $credential -Mode Backups

This command adds the RMAD console on Hostname1 to the replication console list with the Backups mode enabled.

Example 2

PS C:\> C:\>Add-RMADReplicationConsole -ComputerName Hostname1 -Mode Full

This command adds the RMAD console on Hostname1 to the replication console list with the Full mode enabled.

Example 3

PS C:\> C:\>$fallbackAccount = Get-Credential
C:\>Add-RMADReplicationConsole -ComputerName Hostname1 -Mode Full -FallbackCredential $fallbackAccount

This command adds the RMAD console on Hostname1 to the replication console list with the Full mode enabled and with the specified fallback account.

PARAMETERS

-ComputerName

Specifies the hostname of the computer on which the RMAD console you want to add is installed.

Type: String
Parameter Sets: (All)
Aliases:

Required: True
Position: 0
Default value: None
Accept pipeline input: False
Accept wildcard characters: False

-Mode

Specifies the console mode: Full (to replicate backups, collections, global options and schedule) or Backups (to replicate backups only).

Type: ReplicationMode
Parameter Sets: (All)
Aliases:

Required: True
Position: 1
Default value: None
Accept pipeline input: False
Accept wildcard characters: False

-AccessCredential

Specifies the user credentials to read data from the target computer.
The user must be a local Administrator on the target computer.
To obtain the user credentials, create a PSCredential object using the Get-Credential cmdlet provided by Windows PowerShell.

Type: PSCredential
Parameter Sets: (All)
Aliases:

Required: False
Position: Named
Default value: None
Accept pipeline input: False
Accept wildcard characters: False

-FallbackCredential

Supplies a fallback account for replacing the account that is used by the backup schedule task.
The account must have administrator privileges on the system(s) to be backed up.
You can use this parameter only when Full mode is specified for the console.

Type: PSCredential
Parameter Sets: (All)
Aliases:

Required: False
Position: Named
Default value: None
Accept pipeline input: False
Accept wildcard characters: False

-InformationAction

@{Text=}

Type: ActionPreference
Parameter Sets: (All)
Aliases: infa

Required: False
Position: Named
Default value: None
Accept pipeline input: False
Accept wildcard characters: False

-InformationVariable

@{Text=}

Type: String
Parameter Sets: (All)
Aliases: iv

Required: False
Position: Named
Default value: None
Accept pipeline input: False
Accept wildcard characters: False

CommonParameters

This cmdlet supports the common parameters: -Debug, -ErrorAction, -ErrorVariable, -InformationAction, -InformationVariable, -OutVariable, -OutBuffer, -PipelineVariable, -Verbose, -WarningAction, and -WarningVariable. For more information, see about_CommonParameters.

INPUTS

OUTPUTS

NOTES

RELATED LINKS

 

Add-RMADStorageServer

external help file: QuestSoftware.RecoveryManager.AD.PowerShell.dll-Help.xml
Module Name: Quest.RecoveryManager.AD.PowerShell
online version:

schema: 2.0.0

SYNOPSIS

Adds a secure storage server, optionally remotely installs a storage server agent.

SYNTAX

Add-RMADStorageServer [-Name] <String> [-Port <Int32>] [-Credential <PSCredential>] [-RegisterBackups]
 [-InstallAgent] [-IgnoreReadOnly] [<CommonParameters>]

DESCRIPTION

Registers a secure storage server in Recovery Manager for Active Directory.

EXAMPLES

Example 1

PS C:\> Add-RMADStorageServer -Name "backupsrv01.acme.test" -Port 48001

Registers the secure storage server with given name and connection port.

PARAMETERS

-Name

DNS name or IP address of the server.

Type: String
Parameter Sets: (All)
Aliases:

Required: True
Position: 0
Default value: None
Accept pipeline input: True (ByValue)
Accept wildcard characters: False

-IgnoreReadOnly

Allows you to perform the action in a console currently performing full replication.

Type: SwitchParameter
Parameter Sets: (All)
Aliases:

Required: False
Position: Named
Default value: None
Accept pipeline input: False
Accept wildcard characters: False

-Port

Port used to connect to the secure storage agent

Type: Int32
Parameter Sets: (All)
Aliases:

Required: False
Position: Named
Default value: None
Accept pipeline input: False
Accept wildcard characters: False

-Credential

Server credentials used for remote agent installation. Ignored if the '-InstallAgent' switch is not set.

Type: PSCredential
Parameter Sets: (All)
Aliases:

Required: False
Position: Named
Default value: None
Accept pipeline input: False
Accept wildcard characters: False

-InstallAgent

If set, automatically installs storage server agent.

Type: SwitchParameter
Parameter Sets: (All)
Aliases:

Required: False
Position: Named
Default value: None
Accept pipeline input: False
Accept wildcard characters: False

-RegisterBackups

If set, backups on an existing storage server will be registered.

Type: SwitchParameter
Parameter Sets: (All)
Aliases:

Required: False
Position: Named
Default value: None
Accept pipeline input: False
Accept wildcard characters: False

CommonParameters

This cmdlet supports the common parameters: -Debug, -ErrorAction, -ErrorVariable, -InformationAction, -InformationVariable, -OutVariable, -OutBuffer, -PipelineVariable, -Verbose, -WarningAction, and -WarningVariable. For more information, see about_CommonParameters.

INPUTS

OUTPUTS

IStorageServer

NOTES

RELATED LINKS

 

Verwandte Dokumente

The document was helpful.

Bewertung auswählen

I easily found the information I needed.

Bewertung auswählen