Chatee ahora con Soporte

Obtener ayuda en vivo
Completar registro

Iniciar sesión

Solicitar precios

Comuníquese con Ventas

Recovery Manager for AD 10.3.1 - User Guide

Navegación de contenido

About Quest Recovery Manager for Active Directory Features and benefits

Comprehensive Active Directory recovery options AD LDS (ADAM) recovery Granular selective restore Integration with On Demand Recovery Group Policy recovery Integrity checks for backups Centralized remote administration Audit of objects and operations Integration with Change Auditor for Active Directory Fault tolerance Management Shell Scheduling and automation Scalability and performance

Technical overview

Creating backups Backup Storage Backup Agent Recovering Active Directory Recovering Group Policy Comparison reports

Getting started

Permissions required to use Recovery Manager for Active Directory Recovery Manager Console Getting and using help Configuring Windows Firewall

Manual method Automatic method

Using Computer Collections

Creating Computer Collections Renaming Computer Collections Modifying Computer Collection properties Deleting Computer Collections Specifying an access account for Backup Agent and backup file storage Adding domain controllers to a Computer Collection Adding containers to a Computer Collection Adding AD LDS (ADAM) hosts and instances to a Computer Collection Removing items from a Computer Collection

Hybrid Recovery with On Demand Recovery Managing Recovery Manager for Active Directory configuration

Preparing for working with Active Directory or AD LDS (ADAM) backups Settings

General tab Unpacked Backups tab (global settings) E-mail tab Registering Application for Exchange Online Email Notifications Logging tab Ports tab

Default properties for Computer Collections Properties for an existing Computer Collection

Backup tab Local Storage tab Remote Storage tab Secondary Storage tab Agent tab Schedule tab Alerts tab Performance tab Advanced tab

Advanced Scripts Advanced Logging Advanced Integrity Check

Unpacked Backups tab

Container and site properties

Properties for a domain or organizational unit Properties for an Active Directory site Properties for an AD LDS (ADAM) site

Sessions node properties Forest properties Domain properties Domain controller properties AD LDS (ADAM) partition properties AD LDS (ADAM) instance properties Showing or hiding AD LDS (ADAM) partitions Showing or hiding domains Showing or hiding sites

Installing license key file Updating license key file Revoking licenses

Backing up data

Permissions required for the Backup operation Managing Backup Agent

Installing Backup Agent automatically Preinstalling Backup Agent manually Discovering preinstalled Backup Agent Updating Backup Agent information Upgrading Backup Agent Uninstalling Backup Agent Removing a Backup Agent entry from the Backup Agent Management node

Using a least-privileged user account to back up data Using Managed Service Accounts Active Directory backups vs Windows System State backups Creating BMR and Active Directory backups

Creating Active Directory backup Creating BMR backups Usage of backup access credentials

Using the Backup Wizard Retrying backup creation Enabling backup encryption Backing up AD LDS (ADAM)

Method 1: Back up AD LDS (ADAM) from the Recovery Manager Console

Step 1: Connect to AD LDS (ADAM) Step 2: Back up AD LDS (ADAM)

Method 2: Schedule backup creation for AD LDS (ADAM)

Step 1: Connect to AD LDS (ADAM) Step 2: Add AD LDS (ADAM) instances to Computer Collection Step 3: Create or modify backup creation schedule

Backing up cross-domain group membership Backing up distributed file system (DFS) data Backup scheduling

Task scheduler overview

Scheduling backup creation Managing backup schedule Setting user account for scheduled tasks

Setting performance options Setting advanced backup options Unpacking backups

Configuring default settings to unpack backups Configuring Computer Collection-specific settings to unpack backups Unpacking a backup manually Deleting data unpacked from a backup

Using e-mail notification Viewing backup creation results

Sessions node properties

General tab Progress tab

Computer properties Computer session properties

General tab Events tab Backup tab

Backups node properties Filtering backups

General tab for Active Directory backups General tab for Bare Metal backups General tab for Active Directory LDS (ADAM) backups

Integrity checks for Active Directory and AD LDS (ADAM) backups Export List of Active Directory, Bare Metal, and AD LDS (ADAM) backups Properties of registered Active Directory and AD LDS (ADAM) backups

General tab Components tab Malware Detection tab

Getting started with Active Directory recovery

Active Directory recovery options Implications of the online restore

Forcing replication Skipping replication Stopping online restore

Using agentless or agent-based method

Agentless method Agent-based method

Managing deleted or recycled objects

Recovering deleted objects Recycling deleted objects Recovering recycled objects

Restoring backed up Active Directory components Integration with Change Auditor for Active Directory Using granular online restore

Online Restore Wizard overview

Compare, restore, and report changes in Active Directory Compare two backups and report the differences Reporting Selecting objects in the Online Restore Wizard

Restoring AD LDS (ADAM)

Method 1: Restore an AD LDS (ADAM) instance from a backup created with Recovery Manager for Active Directory

Step 1: Select a backup Step 2: Restore AD LDS (ADAM) instance

Method 2: Restore an AD LDS (ADAM) database from a backup created with third-party software

Step 1: Extract and register AD LDS (ADAM) database Step 2: Restore the extracted AD LDS (ADAM) database

Selectively restoring Active Directory object attributes Restoring objects in an application directory partition Restoring object quotas Restoring cross-domain group membership Performing a restore without having administrator privileges Reports about objects and operations

Reports about Active Directory objects Reports about AD LDS (ADAM) objects Reports about Group Policy objects Data about who modified Active Directory objects

Using complete offline restore

Repair Wizard overview

Offline restore implications

Non-authoritative restore

DIT Database SYSVOL

Authoritative restore

DIT database SYSVOL

Restoring SYSVOL authoritatively Performing a granular restore of SYSVOL Recovering Group Policy

Group Policy Restore Wizard overview

Restoring data from third-party backups Using the Extract Wizard

Creating a Windows Server 2008 R2-based domain controller from a backup

Step 1: Create and extract a backup Step 2: Use IFM to create a domain controller

Creating a Windows Server 2012-based or higher domain controller from a backup

Step 1: Create and extract a backup Step 2: Install AD DS on the Windows Server 2012-based or higher computer Step 3: Use the Install-ADDSDomainController cmdlet to install from media

Restoring passwords and SID history

Preserving passwords and SID history in object tombstones

Step 1: Make sure prerequisites are met Step 2: Modify the searchFlags attribute value

Full Replication Consolidating backup registration data Using Management Shell

About Management Shell

Collecting diagnostic data for technical support

Step 1: Use Diagnostic Data Collector to automatically gather data Step 2: Gather remaining data manually

Frequently asked questions

Why do I need to restore deleted users or groups, rather than re-create them? How can I restore a user or group in Active Directory? How does online restore work? When an object is undeleted, what is restored from the tombstone and what is restored from the backup? What's the difference between an online restore and an authoritative restore? What's the difference between the agentless restore method and the agent-based restore method? Can I undelete a mailbox-enabled user? In the Group Policy Restore Wizard, a GPO link is shown as deleted, but the link actually exists in Active Directory. What's wrong? What is a primary restore of the SYSVOL? How do I change the Backup Agent port number? How and where is LDAP used in RMAD?

Best practices for using Computer Collections Technical characteristics

Typical backup creation times

Recommendations

Typical times to unpack backups Typical sizes of databases

Reports database files

Best practices for creating backups

Develop a backup and restore plan Determine which domain controllers to back up and how often Methods for deploying Backup Agent Retain recent backups Where to store backups

Storing backups for granular online or complete offline restores Storing backups for forest recovery

Best practice for schedule and retention

Ports Used by Recovery Manager for Active Directory Backup Wizard

What to Back Up Where to Store Backups When to Back Up Computer Collection Name (optional) Completing the Backup Wizard

Online Restore Wizard

Wizard Operation Mode Domain Selection Backup Selection Backup for Comparison (optional) Unpacked Backups Folder Selection Backup Data Preparation Domain Access Options Objects to Be Processed Action Selection Action Selection (Compare two backups) Processing Options

Select Object Types Select Attributes to Be Processed

Additional Options Operation Start Operation Progress

Password Settings Operational Progress Pop Ups

Operation Option Objects to Be Restored Where to Restore Deleted Objects Operation Results Completing the Online Restore Wizard

Online Restore Wizard for AD LDS (ADAM)

Wizard Operation Mode AD LDS (ADAM) Instance Selection Backup Selection Backup for Comparison Unpacked Backups Folder Selection Backup Data Preparation AD LDS (ADAM) Access Options Objects to Be Processed Action Selection Processing Options Additional Options Operation Start Operation Progress Operation Option Objects to Be Restored Where to Restore Deleted Objects Operation Results Completing the Online Restore Wizard for AD LDS (ADAM)

Group Policy Restore Wizard

Domain Selection Backup Selection Backup Data Preparation Select Domain Controller Group Policy Object Selection GPO Restore Options Link Restore Options Restore Process Start Completing the Group Policy Restore Wizard

Computer and Backup Selection Target Computer Computer Restart Primary Restore of SYSVOL Restore Process Start Restore Progress Authoritative Restore Selections Computer Restart in Normal Mode Completing the Repair Wizard

Backup Selection Folder Selection Operation Start Operation Progress Completing the Extract Wizard

Events generated by Recovery Manager for Active Directory

Common Events Recovery Manager Console events Backup Agent events Management Agent events Restore Agent events

Step 2: Gather remaining data manually

Perform the next steps for each domain controller from which you could not successfully collect data in Step 1: Use Diagnostic Data Collector to automatically gather data.

To gather diagnostic data manually

Create a temporary folder on the local disk of the target domain controller.
Copy Collectdcdata.cmd from the Recovery Manager for Active Directory installation folder to the folder you created in step 1 of this procedure.
Run the Collectdcdata.cmd file in the location to which you copied it and wait for the script to complete.

The collected diagnostic data is saved to the CollectedData folder created in the location where you ran the Collectdcdata.cmd file.
Rename the CollectedData folder so that its name reflects the name of the domain controller from which you collected data.
Add the folder to the .zip file created in Step 1: Use Diagnostic Data Collector to automatically gather data.

Now you can submit the .zip file to Quest® technical support.

Appendices

Frequently asked questions

Why do I need to restore deleted users or groups, rather than re-create them?

Each user account or security group is uniquely identified with a SID (Security ID) and a GUID (Global Unique ID). If a user or group has been deleted, and is then re-created with the same name, the SID and GUID of the newly created user or group will differ from those of the deleted object. As a result, the new user or group loses all permissions, profile settings, and all other settings associated with the old SID and GUID.

When you restore a deleted user or group from a backup, the restored user or group will have the same SID and GUID as the deleted object, and will have all the settings associated with that SID and GUID.

Documentos relacionados

The document was helpful.

Seleccionar calificación

I easily found the information I needed.

Seleccionar calificación

© ALL RIGHTS RESERVED. Términos de uso Privacidad Cookie Preference Center