These release notes provide information about the Quest® Recovery Manager for Active Directory Disaster Recovery Edition 10.3.1 release.
Recovery Manager for Active Directory enables fast, online recovery. Comparison reports highlight what objects and attributes have been changed and deleted in Active Directory enabling efficient, focused recovery at the object or attribute level. Accurate backups and a quicker recovery enable you to reduce the time and costs associated with AD outages and reduce the impact on users throughout your organization.
Recovery Manager for Active Directory is based on patented technology.
Recovery Manager for Active Directory 10.3.1 is a release with new features and functionality. See New Features and Enhancements.
This section covers new features and enhancements in Quest® Recovery Manager for Active Directory 10.3.1.
Recovery Manager for Active Directory Version 10.3.1 has updated and validated all cryptographic algorithms used within each component of the product. RMAD 10.3.1 is using FIPS 140-2 validated algorithms and functions. Encryption is used within the product for encryption of backups, encryption of forest recovery project files, and encryption of all user entered passwords. For all encryption, the product uses AES-256 algorithms.
To support copying backups to Secure Storage Servers in environments where NTLM is disabled, Recovery Manager for Active Directory Version 10.3.1 has enhanced the implementation of Secure Storage Servers.
When NTLM is disabled, a standalone, non-domain joined Secure Storage Server cannot pull the backup from remote primary storage. With Version 10.3.1, RMAD now copies backups over a secure RPC channel that is protected by public/private key pairs and does not rely on either NTLM or Kerberos authentication.
The Active Directory Virtual Lab (ADVL) is a component of Recovery Manager for Active Directory that helps you create virtual test environments. This component has been deprecated in RMAD 10.3.1 and is no longer available. To continue to create virtual test environments the restore active directory to clean OS method can be utilized. Using the Restore Active Directory on Clean OS method you can restore on a freshly installed Windows virtual machine using an available AD backup to create a test environment for your disaster recovery plans.
Recovery Manager for Active Directory Management Pack for Microsoft System Center Operations Manager (SCOM) allows you to monitor the backup and restore operations performed by RMAD. There are two editions of RMAD Management Packs for SCOM: Regular and Limited. With the release of version 10.3.1 both Management Packs have been deprecated and will no longer be available.
Support has been added for US Government GCC High accounts when using Exchange OAuth2 authentication for email notifications.
Recovery Manager for Active Directory supports integrity checks for Active Directory backups. To ensure the integrity of your backup prior to a restore operation, integrity checks are completed by default.
In RMAD version 10.3.1, multiple options have been introduced to select if integrity checks will be performed. Active Directory backup integrity checks are very quick, while BMR and larger backups can take a long time to complete. As a result integrity checks are now optional. Options are available in Computer Collection Advanced properties and during Verify Settings.
After a Scheduled or Manual backup, if Alerts is enabled from the Computer Collection properties, the email notification sent to the user will now include the Integrity check success/failure status. The email notification can contain all integrity check messages or only warnings and errors. You can also configure emails to be sent always or only on warnings and errors.
During the Restore to Clean OS method, the following services will be installed, AD-Domain-Services, DNS, FS-FileServer, RSAT-AD-AdminCenter.
The logic for collecting logs on a domain controller has been moved from a separate service to an operation on the Forest Recovery Agent. RPC Pipes are used to send the collected logs from the domain controller to the Forest Recovery Console.
The password requirements can be modified via the Set-RMADFEGlobalOptions cmdlet with the two new parameters, FRPasswordComplexity and FRPasswordLength.
When creating Azure virtual machines a new option has been introduced to specify private or public IP.
New email notifications (alerts) available for the upload of a backup to cloud storage. Notifications will be sent if a cloud upload fails and backup email notifications are enabled.
| Enhancement | ID (old) | Azure DevOps |
|---|---|---|
| Recovery Manager for Active Directory 10.3.1 | ||
| Create new PowerShell cmdlet - Remove-RMADSession cmdlet | N/A | 370687 |
| Email notifications during integrity checks | N/A | 395979 |
| Allow to add a folder path for Forest Recovery projects to be included in backup | N/A | 396047 |
| Add support for US government GCC high accounts in exchange Oauth2 notifications | N/A | 402135 |
| Add collection Name/Id to PowerShell script parameters | N/A | 410125 |
| Allow to ignore missing/malfunctioning VSS writers | N/A | 412323 |
| Deprecate SCOM | N/A | 416078 |
| Diagnostic log BackupAgent64 - Allow for threshold on file size and overwrite | N/A | 418052 |
| Use remote storage credentials to access the backup storage when running integrity check for backups located on a domain controller | N/A | 421517 |
| Add an option to disable automatic checking of manual and scheduled backups | N/A | 429365 |
| Remove Support for 2012 and 2012 R2 from supported operating systems and SQL Server 2012 | N/A | 437548 |
| Support using of LocalSystem account in scheduled backup | N/A | 437699 |
| Recovery Manager for Active Directory 10.3 | ||
| Salting mechanism for forest recovery project password hashes | N/A | 412667 |
| Show AD tombstone lifetime settings somewhere in a product UI | N/A | 353685 |
| Allow for password complexity | N/A | 253917 |
| BackupAgent does not respect global logging setting 'Create a new set of log files: Never' on the DC side. | N/A | 381957 |
| TLS 1.2 - Enforce in Hybrid Connect Service for communication to On Demand | N/A | 384624 |
| Recovery Manager for Active Directory 10.2.2 Hotfix 2 | ||
| Support for OAuth2 authentication method for email notifications. Required due to deprecation of basic authentication for Exchange Online | N/A | 384541 |
| Recovery Manager for Active Directory 10.2.2 | ||
| Improve message the error while creating remote DCOM object failed because "Access is denied" | N/A | 263396 |
| Cannot restore a user from a backup that requires credentials for accessing it | N/A | 267022 |
| Support GMSA account type to run PS custom script (Agent side only) | N/A | 317648 |
| Installation option for hybrid service in the main product setup | N/A | 346507 |
| New hybrid configuration Powershell API | N/A | 346513 |
| Installer check updated for .NET 4.8 | N/A | 349988 |
| Full support for GMSA accounts for RMAD DRE/FE/Standard | N/A | 352707 |
| Support for Windows 2022 with exceptions. See User Guide | N/A | 363862 |
| Recovery Manager for Active Directory 10.2.1 | ||
| Usability improvements to the Computer Collections Properties dialog including removal of Logging tab and introduction of new tab for Secondary Storage | N/A | 283362 |
| Creation of Management Shell Guide which lists all available PowerShell® cmdlets, with examples. Appendix removed from User Guide | N/A | 275100 |
| Recovery Manager for Active Directory 10.2 | ||
| Rename system state backups to Active Directory® backups | RMADFE-3009 | 218405 |
| Hide the "Components" tab in computer collection settings | RMADFE-3042 | 218415 |
| SCOM 2019 support | N/A | 219783 |
| Pass through Synchronize across time zones from windows task scheduler to RMAD | RMADFE-952 | 220703 |
| Create Logs Daily to be on by default | N/A | 223980 |
| Display operating system version for all backups | N/A | 228741 |
| Enhancement | ID (old) | Azure DevOps |
|---|---|---|
| Recovery Manager for Active Directory 10.3.1 | ||
| Verify setting should warn if target windows version doesn't match backup windows version | N/A | 370842 |
| FR Console - Allow Integrity Check to be optional for backups during Verify Settings | N/A | 400616 |
| Deprecate ADVL | N/A | 414943 |
| Extend Collect Diagnostic Data Feature: Usage of Forest Recovery Agent instead of Separate Process | N/A | 417491 |
| Recovery Manager for Active Directory 10.3 Hotfix 1 | ||
| Allow for password complexity on forest recovery project files | N/A | 253917 |
| Soften default FR project password complexity rules; make them customizable via config file. | N/A | 422735 |
| Recovery Manager for Active Directory 10.3 | ||
| Forest level option to Resume all DC's without selecting them during recovery while paused in DSRM mode | N/A | 367808 |
| Have the Forest project files replicated using the RMAD replication feature | N/A | 374869 |
| Malware Remediation button to also include global malware scanning option | N/A | 369597 |
| Detect DNS server based on server capabilities | RMADFE-2242 | 242068 |
| Implement primary DNS approach as default option for Automatic DNS selection | N/A | 358394 |
| Support multizone DNS delegation restore | N/A | 363514 |
| Automatic DNS selection on Repromotion phase should select restored DNS server on Recovery phase | N/A | 259424 |
| Recovery Manager for Active Directory 10.2.2 Hotfix 2 | ||
| Option for pre-installed online recovery agent | N/A | 358029 |
| Support for agent based restore with LSA protection for Windows 2022 | N/A | 318168 |
| Recovery Manager for Active Directory 10.2.1 | ||
| Automatically enable File and Printer Sharing on the clean OS machine when installing FR agent | RMADFE-2778 | 242106 |
| RMAD Console and Forest Recovery Agent cannot read AD configuration with more than 1000 sites | N/A | 274279 |
| Recovery Manager for Active Directory 10.2 | ||
| Forest Recovery simulation mode available | RMADFE-920 | 218277 |
| The 'View Recovery Report' action should be available as one of the post recovery dialog actions | RMADFE-3034 | 218413 |
| Encrypt credentials in Forest Recovery project using AESCryptoServiceProvider instead of TripleDESCryptoServiceProvider | RMADFE-2199 | 220948 |
| Allow RMAD backup to continue if forest recovery agent cannot be installed | N/A | 221433 |
| Set default global catalog handling option to "Keep GC Intact" | N/A | 223871 |
| Show 'object's tombstone is expired' detailed warning in the Online Restore Wizard | RMADFE-1613 | 223987 |
| Default recovery method to the Repromotion phase should be "Install AD", not "ReinstallAD" | N/A | 234195 |
| Tool to update backup creation date in simulation projects | N/A | 234197 |
| Keep previous recovery methods when changing recovery mode like Forest Recovery --> Repromotion --> Forest Recovery | N/A | 234201 |
| Every DC in simulation project should have a backup created for this domain controller so all recovery methods are available | N/A | 234203 |
| Enhancement | ID (old) | Azure DevOps |
|---|---|---|
| Recovery Manager for Active Directory 10.3.1 | ||
| Avoid install DNS server in case of external DNS used for Restore to Clean OS - Multi Tree Forest | RMADFE-2413 | 242083 |
| Azure VM Creation: Do not create VMs with Public IPs | N/A | 352419 |
| Warning and information about required workaround: MSFT issue: BMR recovery on 2019 may fail with WinRE crash | N/A | 378305 |
| PreInstall windows features required for Clean OS | N/A | 408824 |
| Have restore Clean OS option to use Domain account for accessing clean machine if possible | N/A | 420196 |
| Send email notifications (alerts) on a failed backup upload to the cloud storage | N/A | 428425 |
| Support credentials that have access to multiple tenants | N/A | 437052 |
| Add support for Secure Storage agent on Windows Server Core | N/A | 444928 |
| Recovery Manager for Active Directory 10.3 Hotfix 1 | ||
| Allow to specify a region for Amazon S3 cloud storage | N/A | 423903 |
| Recovery Manager for Active Directory 10.3 | ||
| Display status of secure storage server when hardened with exceptions | N/A | 372705 |
| Azure VMs created in different Resource Group to Network Infrastructure | N/A | 352418 |
| Support shared Access Signature (SAS) for accessing Azure Storage | N/A | 388808 |
| Provide ability to export list of cloud storage and list of secure storage servers | N/A | 318697 |
| Recovery Manager for Active Directory 10.2.2 | ||
| Allow UI to configure different criteria for BMR backups vs system state backups | N/A | 318213 |
| As a RMAD DRE user I have an option to add and remove an AWS S3 storage location under the storage node | N/A | 329448 |
| As a RMAD PowerShell user I can use a PowerShell cmdlet to add/remove/edit AWS S3 storage | N/A | 329452 |
| Ability to pause recovery in DSRM mode | N/A | 333756 |
| Secure Storage: support secure storage server maintenance without unhardening | N/A | 353018 |
| Forest level option to pause recovery in DSRM mode | N/A | 358283 |
| Recovery Manager for Active Directory 10.2.1 | ||
| Support console local storage as a primary storage for copying to Secure Storage server | N/A | 280129 |
| Smart instance type selection for Azure virtual machine creation with Restore to Clean OS feature | N/A | 281406 |
| In the Secure Storage node provide ability to sort/filter/group backups in the RMAD console | N/A | 278538 |
| As a part of server hardening check server and do not allow a domain joined server. Secure Storage agent will not be installed | N/A | 258979 |
| Ability to configure volume for backups on Secure Storage server. Default to copy backups to non system drives. | N/A | 276487 |
| Option to specify static IPs for Azure virtual machine creation | N/A | 315595 |
| Improvement for template selection in Restore to Clean OS | N/A | 297078 |
| Support verify for 'Restore to Clean OS' on live DCs, show warning when live DC is contacted | RMADFE-2933 | 218376 |
| Show free disk space and warning when space is low for volumes on Secure Storage server | N/A | 227980 |
| Recovery Manager for Active Directory 10.2 | ||
| The current image file is not recreated if the file is not older than X days and the version of the Forest Recovery agent and network settings are not changed | N/A | 218323 |
| Document how to pre-configure clean external DNS server which is used for BMR or Clean OS recovery | RMADFE-3110 | 218435 |
| Show computer collection type (system state/BMR) in the RMAD console collections grid | RMADFE-3228 | 218917 |
| In "Restore to Clean OS" we need to disable Windows Updates before promoting machine to DC | N/A | 229862 |
| Recreate ISO when third-party drivers added or removed | N/A | 230402 |
| Log the recovery event with source disk configuration information | N/A | 230457 |
| Validate source and target disks layout match | N/A | 230963 |
| Resolved Issues | ID (old) | Azure DevOps |
|---|---|---|
| Recovery Manager for Active Directory 10.3.1 | ||
| FSMO roles doesn't removed from non-recovered DC | N/A | 408607 |
| OnlineRestoreAgent.msi uninstalls Backup agent on DC if Backup agent exists. Backup agent also uninstalls ORA on DC if exists before install Backup Agent. | N/A | 421201 |
| Perform integrity check after scheduled backup' option works incorrectly | N/A | 430626 |
| GPO Comparison Report error: "Uncaught Reference Error: Enumerator is not defined" | N/A | 431908 |
| Using Online Restore Wizard, any GPO Comparison Reports do not show the changes/differences because the information is hidden | N/A | 434960 |
| Do not store user account credential in the task for scheduled console config backup | N/A | 437559 |
| Too long replication in full mode | N/A | 438621 |
| Restore-RMADDeletedObject cmdlet throws "Invalid Password Cannot decrypt data" when backup is not accessible - improve error message | N/A | 440174 |
| DC side PowerShell script account requires SeInteractiveLogonRight, or the logon will fail. | N/A | 444542 |
| Get information about computer from Backup takes too long to fail if backup access credentials are incorrect | N/A | 448638 |
| When forest domain is forest-wide replicated all DCs in forest should use its DC as primary DNS server | N/A | 468637 |
| Email notifications: SMTP authentication long password truncated after saving and reopening Recovery Manager Settings dialog | N/A | 470665 |
| Recovery Manager for Active Directory 10.3 Hotfix 2 | ||
| Online Restore Agent attempts to connect to a wrong domain controller when trying to perform an online recovery | N/A | 431481 |
| Integrity checks of collections with backups to be stored in Azure Files (SMB share) fail. | N/A | 435383 |
| RMAD console crashes during Online Restore Wizard for AD LDS (ADAM) due to large number of objects. | N/A | 437753 |
| Online restore is failing with the error: Failed to create a remote object. DCOM configuration required. | N/A | 440746 |
| Support gMSA accounts for scheduled collections when "Network access: Do not allow storage of passwords and credentials for network authentication" is enabled. | N/A | 444925 |
| Recovery Manager for Active Directory 10.3 Hotfix 1 | ||
| Cleanup CNAME DC record | RMADFE-2746 | 242105 |
| Hybrid Restore selection is not being verified in installer when remote SQL and windows creds are being used. | N/A | 359203 |
| Online Restore Wizard: "Objects to Be Processed" Add button browse not working properly | N/A | 411383 |
| New-RMADSchedule cmdlet doesn't support several weeks trigger | N/A | 414124 |
| Read zone info from inconsistent/partial registry key | N/A | 419904 |
| Hybrid restore may fail with the 'database is locked' error when restoring 50..100 objects | N/A | 424314 |
| Apply Group Policy step hangs if root domain DNS zone is forest-wide replicated | N/A | 427816 |
| Recovery Manager for Active Directory 10.3 | ||
| Online Restore Wizard: Reporting on Unchanged Objects | N/A | 377277 |
| Incorrect email subject message after unsuccessful/incomplete recovery | N/A | 406720 |
| Computer Column - Timing column for the backup jobs to assist users in estimating job lengths | N/A | 351058 |
| When the Additional path is offline, then a job that's only using local-storage completes with a warning. With Remote Storage, the job fails with an error. | N/A | 370690 |
| ISO boot fails with a BSOD on Windows 2022 lab. To fix the issue, you need to add the latest cumulative update (any update after 7C-KB5015879) into WinRE.wim. Download the LCU September 13, 2022 — KB5017316 (OS Build 20348.1006) (microsoft.com). See the Quest Knowledge Base article KB4368806 for commands that need to be run. | N/A | 376632 |
| Online Restore Wizard Directory object not found when restoring with old 2012 R2 backup to 2019 DC | N/A | 380226 |
| Issue with install - invalid SQL hostname during install/upgrade | N/A | 388182 |
| FSMO Roles are not displayed in the recovery report after restore | N/A | 376235 |
| Tab order on SQL Installer page is wrong | N/A | 397266 |
| Recovery Manager for Active Directory 10.2.2 Hotfix 3 | ||
| RMAD fails to perform backups when using GMSA account after Microsoft Patch applied KB5022289 \ KB5022286 | N/A | 406231 |
| Recovery Manager for Active Directory 10.2.2 Hotfix 2 | ||
| Include product name and version to the self-extracted installation package | N/A | 367930 |
| Remove Autorun from build, CD package | N/A | 380288 |
| Email notifications to O365 email is not supported when Basic Authentication disabled on tenant | N/A | 386176 |
| RMAD Console crashes when recovering SYSVOL from a backup using Repair Wizard | N/A | 388796 |
| SCOM: computer collection and RMAD instances are in not monitored health state | N/A | 393392 |
| Option to "Repair" an installation is grayed out | N/A | 383571 |
| Online restore wizard does not work on Windows 2016 with LSA protection and Secure Boot enabled | N/A | 226670 |
| Online restore wizard does not work on Windows 2022 with agent based restore and with LSA protection enabled | N/A | 367163 |
| Recovery Manager for Active Directory 10.2.2 Hotfix 1 | ||
| Restore-RMADDeletedObject cmdlet crashes when it's used without explicitly specified credentials | N/A | 382646 |
| Domains that are not synced with Azure AD should be present in the list of discovered domains but should not cause error (require credentials) while saving the configuration | N/A | 380628 |
| Cannot save ODR integration settings in RMAD due to an old forest/dc listed in discovered domains | N/A | 380625 |
| Offline Restore Wizard fails with Access Denied to install Offline Restore Agent | N/A | 375451 |
| Setup folder does not include .NET 4.8 after changing product requirement | N/A | 373180 |
| Full replication between two consoles is failing with 'The given key was not present in the dictionary' error | N/A | 322095 |
| Recovery Manager for Active Directory 10.2.2 | ||
| RMAD replication doesn't work with Group Managed Service Account (gMSA) configured for console connection | RMADFE-2594 | 242195 |
| gMSA cannot be used when setting up replication | RMADFE-2519 | 242560 |
| Use a gMSA account from one domain as the agent account for backing up DCs in a different domain does not work | N/A | 265197 |
| RMAD not finding backups requested by ODR in different timezones | N/A | 316404 |
| BackupAgent does not respect global logging setting "Create a new set of log files: Never" | N/A | 322747 |
| Update DisksInfoProvider to be more current and ignore unnecessary drive types | N/A | 323924 |
| ERDiskAD.mdb does not get imported, gets overwritten by blank rmad.db3 when installing the new version. | N/A | 352421 |
| A v10.2.1 pre-installed backup agent fails when backup is requested by a v10.1.1 console | N/A | 353765 |
| Updating backup agent fails if custom port is configured. | N/A | 354851 |
| Global settings dialog has a slightly broken layout on several tabs | N/A | 358457 |
| RMAD Console - Replication: Backup information is not being cleaned out of the console when it no longer exists on source | N/A | 359553 |
| RMAD Console: Diagnostic Logging drop-down reverts to Global Settings when enabled within Advanced settings of Computer Collection | N/A | 363140 |
| Installer log messages are truncated | N/A | 364258 |
| Recovery Manager for Active Directory 10.2.1 Hotfix 2 | ||
| RMAD Console Replication error (XML error) during replication when backup runs on master console | N/A | 351462 |
| Cleanup of metadata during restore of an unprotection object failed from accidental deletion | N/A | 354567 |
| RMAD Console: Diagnostic Logging drop-down reverts to Global Settings when enabled within Advanced settings of Computer Collection | N/A | 363140 |
| RMAD build 10.2.1.36279 will not install and triggers MS Defender notification | N/A | 366313 |
| Recovery Manager for Active Directory 10.2.1 Hotfix1 | ||
| Error with diagram explaining Change Auditor integration | N/A | 323348 |
| GMSA workflow in the documentation is reportedly missing steps | N/A | 325726 |
| Cannot retry a snapshot if certain errors occurred while creating a backup | N/A | 330733 |
| Recovery Manager for Active Directory 10.2.1 | ||
| Allow to unselect Console storage immediately as alternative has been configured | N/A | 220573 |
| Large number of scheduled tasks can cause Console, Replication and PowerShell cmdlets to be extremely slow | RMADFE-1837 | 242166 |
| Remove a BOM prefix from the script file | N/A | 257798 |
| Unpacking the backup and the retention policy may fail if the DC cannot be accessed via LDAP from the RMAD console machine | N/A | 279431 |
| RPC calls to Backup Agent are not retried on RPC_S_SERVER_TOO_BUSY error | N/A | 314812 |
| Misleading 'Unable to map the network share IPC$ on the computer' error message on attempt to map UNC share | N/A | 316902 |
| Installation fails with an invalid error message when using a local windows credential to connect to the remote SQL server | N/A | 317818 |
| Online Restore Wizard cannot undelete an object using a non-administrative account. Restoring an object in Online Restore Wizard using a non-administrative account may result in the following error for NT-Security-Descriptor attribute: "Cannot retrieve attribute value(s) from Active Directory. Possible reason: Insufficient access rights." To ignore this error, the NT-Security-Descriptor attribute can be excluded from the list of restored attributes. |
N/A | 293311 |
| Recovery Manager for Active Directory 10.2 Hotfix 1 | ||
| Installation of Quest personal certificates to the local certificate store failed. Receive error message to install Quest certificates later. This should not be required. | N/A | 274643 |
| Computer Collection scheduled tasks removed after upgrade to 10.2 if gMSA used as the scheduled task account | N/A | 280854 |
| rmad.db3 file gets overwritten during an uninstall -> install of version 10.2 | N/A | 283069 |
| Cannot retain the uncheck "Global Catalog Servers" option in the Advanced tab of the Computer Collection properties window | N/A | 230397 |
| It will display 'Network access is denied' error in Win2016/2019 if specify account to restore GPO with "domain\username" format | N/A/ | 233623 |
| Cannot see some advanced objects in the object picker in Online Restore Wizard | N/A | 275027 |
| Recovery Manager for Active Directory 10.2 | ||
| Security Vulnerability - Sensitive comments embedded within client-side code sent to an end user machine | RMADFE-3244 | 218142 |
| Security Vulnerability - Runtime hardening (SEP, ASLR and other) | RMADFE-3248 | 218146 |
| Full replication fails when a DC is selected for the option 'Unpack each backup upon its creation' in the master console | RMADFE-1858 | 218500 |
| Storage agent settings are not applied on install | N/A | 219910 |
| No progress/wait indication after clicking 'OK' on the 'Add Console…' dialog | N/A | 224321 |
| Backup fails if the Domain Controllers OU has a AzureADKerberos computer object in it as part of Azure AD FIDO deployment | N/A | 227903 |
| Improve documentation with information on number of scheduled computer collections for optimal performance | N/A | 232614 |
| Access Violation in the ProcessRequest function and crashes service | N/A | 232682 |
| Remove mutual exclusion mechanism between replication process and restore process | RMADFE-1575 | 237972 |
| Display correct backup info and support restore for Collections with containers (not DCs) | N/A | 240580 |
| Retriable VSS error causes undefined behavior in Backup Agent on retry | N/A | 241825 |
| Modify the configuration to remove collision problems with SHA1, moved to SHA256 | N/A | 253913 |
| Retention policy ignores collection and consider backups of all collections | N/A | 259645 |
| Resolved Issue | ID (old) | Azure DevOps |
|---|---|---|
| Recovery Manager for Active Directory 10.3.1 | ||
| Avoid install DNS server in case of external DNS used for Restore to Clean OS - Multi Tree Forest | RMADFE-2413 | 242083 |
| Unable to Retry All operation for failed DC after FRC process restarted | N/A | 422083 |
| Backup access failed with user unfriendly error message | N/A | 422251 |
| Verify setting and recovery should show error if target windows version older than version in the backup | N/A | 432655 |
| Domain Removal during recovery leaves Trust account | N/A | 449224 |
| "Do Not Recover" checkbox state is not synced between "Advanced Actions" and "Configure Advanced Actions" dialogs | N/A | 450812 |
| Retry last fails with: "Object reference not set to an instance of an object" after cancelling DC on SetPrefferedDns then close/reopen FR console to resume recovery | N/A | 456538 |
| Forest Recovery Console crashes after project verification or forest recovery if email notification throws an error | N/A | 467130 |
| FR console crashes with Alerts configured after Verify Settings or Recovery if notification "From address" is invalid | N/A | 467637 |
| Recovery Manager for Active Directory 10.3 Hotfix 2 | ||
| Automatic DNS configuration for forest replicated root domain zone | N/A | 423045 |
| Automatic Backup selection criteria always chooses remote backup even if local backup is newer. | N/A | 433601 |
| Inform user about the issues with DNS selection. | N/A | 440127 |
| Recovery Manager for Active Directory 10.3 Hotfix 1 | ||
| Alternate paths are not provided to FR agent if UNC server name contains some special characters | N/A | 420386 |
| Last Integrity Check shows wrong time | N/A | 422094 |
| Custom action RemoveDllReference fails if no dll references are present in FRConsole.exe.config file | N/A | 422727 |
| Console Configuration Backup: unable to create backup on remote share with remote share credential specified | N/A | 422883 |
| Recovery Manager for Active Directory 10.3 | ||
| No warning when accounts are missed on password reset | N/A | 302503 |
| Issues occur with Forest recovery if Administrator and Guest builtin accounts have been renamed | N/A | 273145 |
| The "DC for auth restore of Sysvol" dropdown is empty in the FR project settings | N/A | 412284 |
| Cannot access the recovery plan if no printer exists, or printer is not functioning properly | N/A | 375548 |
| Persistence restore session can become "stuck" | N/A | 365894 |
| Verify operation should check FSMO owners consistency in frproj | N/A | 370975 |
| Date format used to display date/time on progress screen in Forest Recovery Console does not follow the configured date/time format on the server | N/A | 374429 |
| Same domain name appears twice with different letter cases on project settings dialog | N/A | 252242 |
| iLO access password is logged in clear text | N/A | 317963 |
| 'Configure the domain controller as global catalog server' option is shown on FR console when the 'Restore Active Directory on Clean OS' recovery method is used | RMADFE-2830 | 242200 |
| DNS is not working correctly after BMR recovery with multiple DNS domains hosted in one zone | RMADFE-2173 | 242184 |
| Do not show skipped "Apply group policy" step on progress tab | N/A | 414312 |
| Recovery Manager for Active Directory 10.2.2 Hotfix 2 | ||
| Forest recovery step Configure DNS server slow | N/A | 355113 |
| Forest recovery failed at Apply group policy step | N/A | 384999 |
| Loopback address is duplicated in DNS client settings | N/A | 364187 |
| Apply Group Policy step should not restart DC if not required | N/A | 381177 |
| Skip removing deletion protection from domain controller objects when doing metadata cleanup | N/A | 395989 |
| Recovery Manager for Active Directory 10.2.2 Hotfix 1 | ||
| Check Forest Health uses the local credentials to create a test user | N/A | 374940 |
| Manage Domain Controller Tools allow to manage agents for "Do not recover" domain controllers using "invisible" credentials | N/A | 372411 |
| Forest Recovery projects are not loaded automatically after upgrade if they were created by the prior version. | N/A | 322930 |
| Recovery Manager for Active Directory 10.2.2 | ||
| Installing Forest Recovery agent hangs if SMB shares are disabled | N/A | 285225 |
| Antivirus scanning failed with 'Path too long' error | N/A | 324610 |
| FRConsole broken due to undocumented new System Requirements for FR Console | N/A | 325287 |
| FR Console Crashes after recovery cancellation | N/A | 363341 |
| Recovery Manager for Active Directory 10.2.1 Hotfix 2 | ||
| Install AD/IFM operation may fail unable to bind replicationPartner parameter | N/A | 356459 |
| Recovery Manager for Active Directory 10.2.1 Hotfix1 | ||
| Forest Recovery Console takes a long time to apply backup selection criteria | N/A | 322570 |
| Online Restore Wizard cannot connect to Change Auditor database if the agent-based method is selected | N/A | 325775 |
| Verify Setting may fail at pre-recovery checking DSRM password | N/A | 328446 |
| Protect object from accidental deletion prevents Metadata Cleanup from removing DC computer object | N/A | 330979 |
| Recovery Manager for Active Directory 10.2.1 | ||
| Check Forest Health can get stuck on the second step | RMADFE-3041 | 218559 |
| New recovery project, selecting a Backup display the adding time in the Backup Age column instead of backup age | N/A | 237971 |
| 'There is no PREFERRED_DNS value' error occurs, if no DNS server is found on installing Active Directory | RMADFE-2437 | 242191 |
| Feature loss in Forest Edition: Cannot skip a backup for non-authoritative DCs in Sysvol recovery mode | N/A | 245551 |
| 'There is no PREFERRED_DNS value' error when a 'Select preferred DNS' agent operation did not return a result it causes product to halt and cannot be skipped or aborted | N/A | 253457 |
| Resume Forest Recovery show 'Password is incorrect' | N/A | 254788 |
| Installing Forest Recovery agent hangs if SMB shares are disabled | N/A | 285225 |
| Recovery Manager for Active Directory 10.2 Hotfix 1 | ||
| During upgrade a DBImport error occurs when antimalware status data exists. Caused by debug logging on by default. | N/A | 274622 |
| GPO Comparison Report is not working | N/A | 278211 |
| Recovery Manager for Active Directory 10.2 | ||
| Email notification template contains invalid text and status message | N/A | 252659 |
| Verification email contains incorrect backup data | N/A | 252866 |
| Creating ADVL fails when unable to access VConverter error | N/A | 253382 |
| Wrong replication partner is selected in IFM recovery on second phase. IFM failed | N/A | 253681 |
| IFM script does not automatically reboot DC after installed AD DS tools. IFM failed | N/A | 253778 |
| Install AD method on second phase may fail with "Unable to connect to the replication source" | N/A | 225791 |
| IPSec isolation policy was not removed successfully when previous forest recovery is aborted and left dirt data | N/A | 237004 |
| IPSec isolation policy was not removed successfully during restore | N/A | 237049 |
| The "Reset computer account" operation fails when some other recovery operation failed and retried earlier | RMADFE-2659 | 242197 |
| After upgrade from 10.1 to 10.1.1, the Verify Settings in Forest Recovery console send emails with some kind of strange status messages | N/A | 242679 |
| Resolved Issue | ID (old) | Azure DevOps |
|---|---|---|
| Recovery Manager for Active Directory 10.3.1 | ||
| Backup file might be failed to be copied when secure storage option is set for collection | N/A | 375340 |
| "Last Integrity Check" column doesn't get updated in secure storage node | N/A | 425603 |
| Improve error message for verify settings Clean OS | N/A | 438269 |
| Fix integrity check settings for BMR backups | N/A | 445484 |
| Pulling backups from servers in NTLM restriction environment is not supported. | N/A | 447207 |
| Clean OS recovery failed when Sysvol path match NTDS path | N/A | 461548 |
| Cloud Storage: For some reason the backup/upload process doesn't cleanup the shares it maps every once in a while | N/A | 464935 |
| Recovery Manager for Active Directory 10.3 Hotfix 2 | ||
| Replicate FSMO owners retry during recovery when step is run on child domain dc "Replication don't work. Error#" | N/A | 428528 |
| Reset computer account password operation fails during BMR recovery. | N/A | 433325 |
| Verify Settings fails on Check Free Space if ComputerName or DomainName is not provided in Backup Access Credentials. | N/A | 437727 |
| Reset Trust Password step hangs when GC configured to rebuild | N/A | 445231 |
| Recovery Manager for Active Directory 10.3 | ||
| When overwrite VM if exists is not selected, event says creating VM when VM already exists | N/A | 318198 |
| Cloud Storage: AWS S3 upload fails with error after retention enabled on immutable bucket | N/A | 397464 |
| GC option does not work for Restore AD on clean OS | N/A | 384398 |
| Email notification feature new dependencies incompatible with latest Azure VM PowerShell Cmdlets and causes issues with Azure VM Provisioning | N/A | 406811 |
| Azure VM creation fails with "Cannot boot Hypervisor Generation 1… error" | N/A | 409019 |
| Target Virtual Machine populates with the word fake | N/A | 368647 |
| Cloud Storage: Default Add Storage dialog window size causes issues reading all content when adding AWS immutable cloud storage | N/A | 374915 |
| Update permissions required for AWS list operations required in UI | N/A | 396392 |
| PowerShell Module does not auto-import for SS agent | N/A | 373608 |
| Backup may be missing on secure storage server after collection backup completed | N/A | 372682 |
| Cloud Upload Session order keeps changing | N/A | 397267 |
| Recovery Manager for Active Directory 10.2.2 Hotfix 2 | ||
| Clean OS recovery can take too long on Configure DNS Server step | N/A | 386993 |
| Recovery Manager for Active Directory 10.2.2 Hotfix 1 | ||
| Azure VM cleanup before/after creation fails if source DC has one disk | N/A | 379041 |
| Share User Name cannot be empty on cloud upload | N/A | 371060 |
| Secure Storage: Upgrade or Clean install of Secure Storage Agent fails | N/A | 370364 |
| Secure Storage: UI text bug only - Security Status incorrect after unhardening/hardening SS server after agent upgrade | N/A | 369651 |
| Cloud Storage: Azure Container drop-down poor performance | N/A | 369471 |
| Secure Storage: Running Get-RMADStorageServerException throws PowerShell error | N/A | 369467 |
| Recovery Manager for Active Directory 10.2.2 | ||
| Online restore with agent failed with the error code "The operation completed successfully" | N/A | 231815 |
| Replication health check hangs if some replication neighbors cannot be contacted | RMADFE-2841 | 242201 |
| The "Ensure that domain controller isolation is disabled" Clean OS operation might stuck | N/A | 273396 |
| Unisolate step hangs indefinitely during Clean OS recovery if FW turned on by GPO | N/A | 320773 |
| Azure VM creation fails on generating service principal with "cannot call method on a null-valued expression" | N/A | 333691 |
| Windows Server Backup (BMR) Verify doesn't work on non-English windows | N/A | 355867 |
| Unable to install Secure Storage Agent on non-English server | N/A | 361135 |
| Clean OS recovery. Ensure Sysvol replication engine is initialized completely before proceeding to backup recovery | N/A | 363117 |
| Mapping of same share takes a long time in sequential order if it has already been mapped under another user | N/A | 364473 |
| Azure VM creation: Unable to configure VPN connection if target network has multiple subnets | N/A | 364504 |
| Automatic boot of VMWare VM may fail on uploading ISO file to the datastore | N/A | 364508 |
| Recovery Manager for Active Directory 10.2.1 Hotfix 2 | ||
| Restore to clean OS may fail with "More data is available" error | N/A | 323968 |
| Verification fails with 80+ AD DCs in parallel | N/A | 346048 |
| Recovery Manager for Active Directory 10.2.1 Hotfix1 | ||
| RMAD VSS backup might be corrupted, no errors is reported | RMADFE-2794 | 242199 |
| BMR recovery may fail at ISO image creation with "Access to the share path is denied" error | N/A | 321726 |
| Regression on 220573: Should allow Console Storage unselection immediately | N/A | 324331 |
| Wrong disk free space calculation in Clean OS verify and recovery workflows | N/A | 324353 |
| Secure Storage Server - copying multiple backups at same time to new secure storage server folder can lead to error | N/A | 326044 |
| "EFI secure boot could be enabled only on EFI firmware" error when creating VMWare virtual machine | N/A | 329480 |
| Fix "Including additional volumes to a BMR backup" documentation | N/A | 348727 |
| Recovery Manager for Active Directory 10.2.1 | ||
| Cache and reuse the extracted WinRE images | RMADFE-3206 | 218577 |
| Health Check wizard should work after Restore to Clean OS | N/A | 226971 |
| Bare Metal Recovery backup does not work with SAN policy set to OfflineAll | RMADFE-1955 | 242174 |
| Restore Clean OS failed if original DC has encrypted volumes | RMADFE-2857 | 242202 |
| Recreate ISO when third-party drivers added or removed | RMADFE-2928 | 242204 |
| Installing Active Directory may fail with access denied due to lack of permissions to write the objects into Computers OU. To workaround, user must set the JoinDomainBeforeInstallAD option to True in FRConsoleSettings.xml file. This will skip joining OU Computers during the promotion of the DC and join it directly to OU Domain Controllers. | RMADFE-3101 | 242598 |
| Incorrect filtering of backups on the secure storage server | N/A | 278874 |
| Password showing in clear text for event id 403, showing PowerShell script name, the user name, and password | N/A | 281399 |
| Project verification with Zero touch configured reboots the working servers to WinRE mode | N/A | 283230 |
| Unable to verify settings if Azure virtual machine exists or is shut down | N/A | 304177 |
| Forest Recovery with VMWare machine creation fails if source has BIOS firmware and more than one critical disk | N/A | 313724 |
| Console crashes if storage server refresh fails when secure storage backups node is selected | N/A | 315182 |
| Failed to establish DNS configuration after recovery with Azure virtual machine | N/A | 318396 |
| Failed to prepare infrastructure on Azure VM with 'QuestSoftware.RecoveryManager.AD.ForestRecovery.LocalizableException: Cannot find path because it does not exist' message | N/A | 318660 |
| Change the warning which explains that the recovery ISO should be dismounted | N/A | 318768 |
| Error message prompting the user failed because the host program or the command type does not support user interaction, after failing to create VM in Azure and Retry All operations for a specific DC | N/A | 319038 |
| Cannot validate argument on parameter 'VM'. The argument is null or empty | N/A | 319040 |
| Unable to access the backup on Azure file share during Clean OS Restore to Azure VMs | N/A | 304022 |
| For Azure VM creation, a cloned Infrastructure platform template is not automatically selected on the infrastructure tab after Service Principle generation | N/A | 259493 |
| Azure VM creation does not work with Az Powershell module 7.0.0. API changes in Service principal management cmdlets used by RMAD. | N/A | 323193 |
| Recovery Manager for Active Directory 10.2 Hotfix 1 | ||
| Zero touch against Dell server not working. Forward slash in the ISO access credentials is required. | N/A | 274417 |
| Integrity check may fail if the storage server is registered using an IP address | N/A | 274471 |
| Double backslash in the backup path on the storage server causes failure | N/A | 274472 |
| Cannot perform BMR restore in 10.2 if the source machine is BIOS with a SCSI boot volume | N/A | 277893 |
| "System.ArgumentException: An item with the same key has already been added" error during BMR recovery when multiple DCs configured to boot using iLO | N/A | 282728 |
| Dell and HP ZeroTouch settings are converted to templates on upgrade | N/A | 283208 |
| Template selection and configuration usability improvements and clarification with better text | N/A | 297078 |
| Recovery Manager for Active Directory 10.2 | ||
| An error "Index(zero based) must be greater than" during BMR recovery on the Restore disks step | N/A | 218575 |
| When processing Bare Metal Active Directory recovery for Korean Windows, it created error message in 'Run pre-recovery checks' step | N/A | 219702 |
| During BMR recovery restart domain controller in normal mode hanging | N/A | 227232 |
| "Collection diagnostic data" tool fails to collect data from target machine in Clean OS and BMR modes | N/A | 227427 |
| Cannot bind parameter 'DomainMode' to the target error | N/A | 232543 |
| DC restored with 'Restore to Clean OS' method from backup without DNS partition should not be selected as Primary DNS server | RMADFE-3100 | 242133 |
Recovery Manager for Active Directory fully supports Transport Layer Security (TLS) 1.2. It is recommended that you upgrade to TLS 1.2 for secure communications.
| Security Resolved Issue | ID (old) | Azure DevOps |
|---|---|---|
| Recovery Manager for Active Directory 10.3 | ||
| Salting mechanism for forest recovery project and ADVL project password hashes | N/A | 412667 |
| Enforce password complexity on Forest Recovery project | N/A | 253917 |
| TLS 1.2 - Enforce in Hybrid Connect Service for communication to On Demand | N/A | 384624 |
| Recovery Manager for Active Directory 10.2.1 | ||
| Do not use SHA1 for key derivation function to generate hash for creation of AES-256 key for backup encryption |
--- | --- |
© 2024 Quest Software Inc. ALL RIGHTS RESERVED. 利用規約 プライバシー Cookie Preference Center
