Release Notes
These release notes provide information about the Quest® Recovery Manager for Active Directory Disaster Recovery Edition 10.1.1 release.
Recovery Manager for Active Directory enables fast, online recovery. Comparison reports highlight what objects an attributes have been changed and deleted in Active Directory enabling efficient, focused recovery at the object or attribute level. Accurate backups and a quicker recovery enable you to reduce the time and costs associated with AD outages and reduce the impact on users throughout your organization.
Recovery Manager for Active Directory is based on patented technology.
Recovery Manager for Active Directory 10.1.1 is a maintenance release with new features and functionality. See New Features and Enhancements.
This section covers new features and enhancements in Quest® Recovery Manager for Active Directory 10.1.1.
Support LDAP over SSL (LDAPS) to encrypt Active Directory connection for online restore of backups
Run PowerShell Scripts before and after creating a backup This option allows you to customize your environment by running PowerShell scripts before and/or after creating a backup. Custom scripts can be launched either on the Recovery Manager for Active Directory Console machine or on the domain controller side.
FEATURE PREVIEW: Support for Broadcom Endpoint Security Recovery Manager for Active Directory supports malware scan for BMR and Active Directory backups using Broadcom Endpoint Security (former name: Symantec Endpoint Protection 15).
Convert Windows Server Backup to RMAD BMR Backup
Support for native Windows Server backups by converting them to RMAD BMR backups using PowerShell API.
Support for VMware vCenter/ESX version 6.7 in Active Directory Virtual Lab
Recovery Manager for Active Directory supports VMware vCenter/ESX version 6.7 for creating virtual test environments in Active Directory Virtual Lab.
Scan Active Directory backups for viruses
Malware scan is now supported for Active Directory backups.
FEATURE PREVIEW: Support for Symantec Endpoint Protection version 14.x
From this version, Recovery Manager for Active Directory supports malware scan for BMR and Active Directory backups using Symantec Endpoint Protection.
| Enhancement | ID (old) | ID (new) |
|---|---|---|
| Recovery Manager for Active Directory 10.1.1 | ||
| Support LDAP over SSL (LDAPS) to encrypt Active Directory connection for online restore of backups. This includes full support for both agent-based and agentless online restores of Active Directory objects and a new global option to specify SSL connection (select the Use Secure Sockets Layer (SSL) to encrypt the connection check box in the Recovery Manager for Active Directory Settings dialog). | RMADFE-823 | ADO-222475 |
| Run PowerShell Scripts before and after creating a backup. This option allows you to customize your environment by running PowerShell scripts before and/or after creating a backup. Custom scripts can be launched either on the Recovery Manager for Active Directory Console machine or on the domain controller side. | RMADFE-2281 | ADO-218304 |
| Recovery Manager for Active Directory 10.1 HF2 | ||
| The computer collection type (System State and Bare Metal) is displayed in the Recovery Manager Console. | RMADFE-2133 | ADO-218173 |
| Full replication: A user can view collection properties and global settings in the console that is used as a replication target. All of these settings are read-only, except Logging in global settings. | RMADFE-2874 | ADO-218185 |
| Hide replication sessions older than X days shown under Replication > History in Recovery Manager Console Introduced a new registry key named "ReplicationSessionLimitDays" that allows you to specify the number of days (Default: 10). The new registry key only limits the replication history shown in the Recovery Manager Console, and it does not work with the relevant PowerShell cmdlets. | RMADFE-2910 | ADO-218187 |
| The "PassedWithWarnings" antivirus scan status is shown if your antivirus database is older than the specified time limit. From this version, this limit is set to 3 days by default. | RMADFE-3230 | ADO-218220 |
| Enhancement | ID (old) | ID (new) |
|---|---|---|
| Recovery Manager for Active Directory 10.1.1 | ||
| ADVL automatic DNS selection doesn't work if no target item has preferred DNS. | RMADFE-3250 | ADO-218271 |
| Support LDAP over SSL (LDAPS) for Forest Recovery Edition, including the ability to select SSL connection when connecting to a forest in the Recover Manager console. | RMADFE-823 | ADO-218354 |
| Creating Recovery Media (ISO) enhancement - use custom WinRE.wim image. | RMADFE-3126 | ADO-218437 |
| Recovery Manager for Active Directory 10.1 HF2 | ||
| Opening large projects in the Forest Recovery Console is made quicker by running the DNS cache update in the background. | RMADFE-3107 | ADO-218205 |
| Default states of checkboxes on the General tab now depend on the original DC type "Install the domain controller as a read-only" - This option is selected by default if the original DC was a read-only DC. Applicable methods include Install/Reinstall Active Directory, and Install/Reinstall Active Directory from Media. "Configure the domain controller as a global catalog server" - This option is selected by default if the original DC was a global catalog. Applicable methods include Install/Reinstall Active Directory, Install/Reinstall Active Directory from Media, and Restore Active Directory on Clean OS. | RMADFE-2904 | ADO-218186 |
| Recovery Manager for Active Directory 10.1 HF1 | ||
| Auto-select a manually-registered backup for Install and Reinstall AD from Media recovery methods Now the Forest Recovery Console can automatically select a manually-registered backup for the recovery methods Install and Reinstall AD from Media. | RMADFE-2905 | ADO-218362 |
| Active Directory backups for a DC with custom DNS suffix now contain correct domain names Now such Active Directory backups have correct domain names and can be selected for the recovery methods Install and Reinstall AD from Media in the Forest Recovery Console when performing forest recovery in an environment with disjoint namespace. | RMADFE-2850 | ADO-218527 |
| Support for restore of custom Primary DNS suffixes for domain controllers from a disjoint namespace The Install Active Directory (including the Install from Media option) and Restore Active Directory on Clean OS recovery methods support restore of custom Primary DNS suffixes for domain controllers from a disjoint namespace. | RMADFE-2911 | ADO-218365 |
| The Reset Passwords option is not available for the Repromotion mode The Reset Passwords dialog is not displayed during the Phase 2 recovery because this feature is not available for the Repromotion mode. | RMADFE-2903 | ADO-218359 |
| Enhancement | ID (old) | ID (new) |
|---|---|---|
| Recovery Manager for Active Directory 10.1 HF2 | ||
| Scheduled BMR project verification does not use the latest backup | RMADFE-3053 | ADO-218195 |
| If the DC name is too long, the resulting path to the temporary folder that is used to extract backup files during the malware scan may exceed the limit and the backup files cannot be extracted. | RMADFE-3081 | ADO-218199 |
| Recovery Manager for Active Directory 10.1 HF1 | ||
| Search for BMR backups for an Active Directory with disjoint namespace works fine BMR backups for an Active Directory with disjoint namespace can be easily found in Forest Recovery Console. | RMADFE-2797 | ADO-218517 |
| Resolved Issue | ID (old) | ID (new) |
|---|---|---|
| Recovery Manager for Active Directory 10.1.1 | ||
| Agent-based online restore can result in lsass process crash. | RMADFE-3233 | ADO-218222 |
| Unable to restore AD object when user provides smart card PIN and username hint. | RMADFE-3132 | ADO-218574 |
| Configuring a backup schedule is disabled when creating a backup from Recovery Manager for Active Directory > Create Backup. | RMADFE-3260 | ADO-219136 |
| SCOM pack Get Collections call results in Access denied errors. | RMADFE-3025 | ADO-220574 |
| Increasing number of scheduled tasks makes Console, Replication, and Cmdlets extremely slow. | RMADFE-1837 | ADO-223040 |
| RMAD console crashed due to missing DLL Microsoft.Xaml.Behaviors.dll. | N/A | ADO-226682 |
| After restore a User Object Member Of is different than in Active Directory. | N/A | ADO-230090 |
| Recovery Manager for Active Directory 10.1 HF2 | ||
| Cannot replicate a password from the E-mail tab in the Recovery Manager for Active Directory Settings dialog during full replication. | RMADFE-2999 | ADO-218191 |
| Recovery Manager Console cannot replicate AD LDS (ADAM) instances from an untrusted domain in a collection. | RMADFE-3099 | ADO-218203 |
| Recovery Manager Portal installation using SQL Server authentication fails with an error indicating the specified credentials do not have sufficient privileges on target SQL Server. | RMADFE-3064 | ADO-218197 |
| Recovery Manager for Active Directory 10.1 HF1 | ||
| Now the backup collecting schedule can be configured for the selected day of the week. | RMADFE-3029 | ADO-218556 |
| Recovery Manager for Active Directory does not restore GPO template files because they are considered as DFSR conflicts and are removed. | RMADFE-2800 | ADO-218518 |
| The Group Policy Restore Wizard cannot connect to a domain controller because it mistakenly tries to connect to another domain controller that is not available. | RMADFE-2554 | ADO-218510 |
| Full replication fails with the "No such host is known" error when the slave console has an unreachable DC in the Backup Agent Management list. | RMADFE-2625 | ADO-225873 |
| The Online Restore Wizard cannot accept long paths (longer than 22 symbols) to the Change Auditor database. | RMADFE-2567 | ADO-225869 |
| A list of registered backups opens with a delay in Online Restore Wizard. | RMADFE-2715 | ADO-218318 |
| The text on the "Unpacked Backups" (global settings) tab in the "Settings" dialog box has been improved. | RMADFE-2775 | ADO-218324 |
| Recovery Manager Console cannot replicate AD sites from an untrusted domain in a collection. | RMADFE-2844 | ADO-218523 |
| Full replication fails when a DC is selected for the option 'Unpack each backup upon its creation' in the primary console. | RMADFE-1858 | ADO-225860 |
| Resolved Issue | ID (old) | ID (new) |
|---|---|---|
| Recovery Manager for Active Directory 10.1.1 | ||
| IPv6 based UNC Path support. | RMADFE-3232 | ADO-218913 |
| Scanning of all backups does not stop when one of the processes ends urgently. | N/A | ADO-219145 |
| Errors when trying to restore SYSVOL: Need to improve the RPC stability. | N/A | ADO-228250 |
| ADVL converter returns 500 error. | N/A | ADO-230091 |
| Error when booting VM: "Invalid location type. Location accepts only VIDatastore objects." | N/A | ADO-233811 |
| Recovery Manager for Active Directory 10.1 HF2 | ||
| Restore to Clean OS does not restore SYSVOL contents if custom SYSVOL path was specified in the project settings. | RMADFE-3231 | ADO-218221 |
| The "Verify selected DCs" operation shows zero progress for all other domain controllers. | RMADFE-2649 | ADO-218183 |
| The "Elapsed time" counter in the Forest Recovery Console stops after DC failure even when the verify operation continues. | RMADFE-2925 | ADO-218188 |
| When every DC in the domain is marked as "Do not recover" it implies that the domain will be removed during the recovery process. But it is a forest-wide operation and should be prohibited in the "Domain Recovery" mode. | RMADFE-2988 | ADO-218189 |
| Forest Recovery Console cannot open a project file saved with UTF-8 BOM. | RMADFE-3083 | ADO-218201 |
| Forest Recovery console mistakenly performs user authentication during health check for a read-only domain controller. | RMADFE-2015 | ADO-218501 |
| Opening a saved project in Active Directory Virtual Lab fails with the "This implementation is not part of the Windows Platform FIPS validated cryptographic algorithms" error when FIPS compliance is enabled in the server where Recovery Manager Console is installed. | RMADFE-3060 | ADO-218196 |
| DC access credentials cannot be reset if they are specified in the "domain\username" format on the General tab or on the Recovery Mode tab in the Recovery Project Settings dialog. | RMADFE-3104 | ADO-218204 |
| If the domain access account is entered in the "domain\username" format on the General tab, this account will not be automatically excluded from the password reset operation when the "Reset password for domain users in privileged groups" option is enabled in the Reset Passwords dialog. | RMADFE-3189 | ADO-218213 |
| Recovery Manager for Active Directory 10.1 HF1 | ||
| Forest Recovery scheduled verification fails if Persistence is enabled but the Persistence SQL server is not accessible. | RMADFE-2831 | ADO-218519 |
| Reinstall of read-only DC may not work. | RMADFE-2996 | ADO-218549 |
| Install Active Directory may fail due to the Select DNS operation cannot restart the Netlogon service. | RMADFE-3013 | ADO-218552 |
| Forest Recovery Console correctly displays a type of scanned backup in warnings if the backup is infected. | RMADFE-3008 | ADO-218550 |
| Recovery Manager for Active Directory should clean the 'selected backup' field in the Forest Recovery Console when no backups pass the backup selection criteria filter. | RMADFE-2932 | ADO-218375 |
| Do not validate a backup password if the backup is not specified for the Install Active Directory or Reinstall Active Directory method. | RMADFE-2987 | ADO-218393 |
| Cannot select the "Do nothing" option for a read-only domain controller (RODC) in the second phase. | RMADFE-2915 | ADO-218532 |
| DNS A record of a domain may not be deleted during DNS cleanup. | RMADFE-2860 | ADO-218335 |
| The "Install from Media" option on the General tab of the Forest Recovery Console gets unchecked when you check or uncheck the "Use backup criteria to automatically select a backup" option. | RMADFE-2906 | ADO-218530 |
| In the "Adjust to Active Directory changes" recovery method only credentials in the Normal mode should be available. | RMADFE-2843 | ADO-218522 |
| The CD-ROM device must be added (if it is absent on the source machine) to an instance converted with ADVL to install VMware Guest Tools on the target machine. | RMADFE-2786 | ADO-218515 |
| It is required to limit the maximum number of automatically selected DNS servers on the domain controller. | RMADFE-2608 | ADO-218312 |
| Automatic DNS configuration can choose an unrestored DNS server. | RMADFE-2714 | ADO-218317 |
| Resolved Issue | ID (old) | ID (new) |
|---|---|---|
| Recovery Manager for Active Directory 10.1.1 | ||
| Impossible to collect an encrypted BMR backup when Bitlocker was hardened by GPOs. | RMADFE-3212 | ADO-218269 |
| Cannot create BMR backup for the domain controller with Data Duplication enabled on a non-critical volume. | RMADFE-3211 | ADO-218929 |
| Impossible to collect an encrypted BMR backup when GPO "Choose drive encryption method and cipher strength (Windows 10 [Version 1511] and later)" is set. | RMADFE-3213 | ADO-219148 |
| Error when processing Bare Metal Active Directory Recovery in Forest Recovery Console. | N/A | ADO-222538 |
| "Invalid server certificate" error occurs when connecting to vCenter. | N/A | ADO-227404 |
| Bare metal recovery fails with error "The process terminated unexpectedly" if the target disk is too small. | N/A | ADO-230712 |
| Permissions applied based on current documentation and BMR restore does not work - no access to list data stores. | N\A | ADO-232623 |
| Recovery Manager for Active Directory 10.1 HF2 | ||
| The "An item with the same key has already been added" error may occur while verifying the recovery project with Bare Metal Active Directory Recovery. | RMADFE-3092 | ADO-218202 |
| The "Another task is already in progress" error occurs when starting the VMWare virtual machine. | RMADFE-3229 | ADO-218219 |
| Bare Metal Recovery project verification fails to process DNS IP addresses delimited with a comma followed by space. | RMADFE-3223 | ADO-218217 |
| Restore to Clean OS may fail on the "reboot to Normal mode" operation. | RMADFE-3225 | ADO-218218 |
| Server booting using Dell iDRAC fails with the "No suitable authentication method found to complete authentication" error. | RMADFE-3177 | ADO-218211 |
| HP iLO server cannot be booted automatically. | RMADFE-3196 | ADO-218215 |
| You may get "Object reference is not set to an instance of an object" error on the "Getting information about computer from backup" step. | RMADFE-3186 | ADO-218212 |
| The IP address of the wrong NIC is used in the "Get information about computer from backup" verification step. | RMADFE-3112 | ADO-218206 |
| The recovery method 'Restore AD on Clean OS' mistakenly uses the domain credentials to install Forest Recovery Agent while verifying project settings. | RMADFE-3033 | ADO-218193 |
| Forest Recovery Console cannot use network credentials (non-Administrative) for a backup share due to malware scan of Active Directory backup. | RMADFE-3082 | ADO-218200 |
| Malware scan result icon and tooltip are not refreshed in case of manual selection of BMR backup. | RMADFE-3039 | ADO-218194 |
| The DVD boot device is not available in Firmware list after BMR restore (Hyper-V). | RMADFE-3066 | ADO-218198 |
| BMR console may fail when going back to Config IP address step | RMADFE-3128 | ADO-218209 |
| Recovery Manager for Active Directory 10.1 HF1 | ||
| The UI controls that are associated with the Restore Active Directory on Clean OS recovery method are not disabled if the Disaster Recovery Edition license is not applied. | RMADFE-3054 | ADO-218566 |
| Scheduled BMR project verification does not use the latest backup. | RMADFE-3044 | ADO-218561 |
| When the "Use backup criteria to automatically select a backup" option is selected and you change the current recovery method to "Restore on Clean OS", the auto-selected backup will disappear. | RMADFE-3045 | ADO-218562 |
| Recovery to Clean OS could fail for Windows Server 2012 DCs with FRS replication. | RMADFE-3037 | ADO-218558 |
| The VM is not booted from the ISO file if the machine was previously restored using BMR recovery. | RMADFE-2942 | ADO-218536 |
| The ISO file is not deleted from the VM storage location after recovery (Hyper-V, VMWare). | RMADFE-2941 | ADO-218535 |
| Ensure that Windows Defender is not mentioned in the UI. | RMADFE-2887 | ADO-218353 |
| Some passwords are logged in clear text for ZeroTouch operations (VMWare, Hyper-V). | RMADFE-2940 | ADO-225924 |
| Unable to cancel the "waiting for recovery media" operation when the agent does not respond. | RMADFE-2837 | ADO-218520 |
| The ISO file access credentials are not applied when booting a Hyper-V virtual machine. | RMADFE-2916 | ADO-218533 |
| Booting of a VMWare virtual machine may fail if the virtual machine name contains special symbols (e.g. dot). | RMADFE-2907 | ADO-218531 |
| Parallel upload of the ISO file to the VMWare datastore may fail. | RMADFE-2899 | ADO-218529 |
| Now Recovery Manager for Active Directory checks the required Windows version (2016 or higher) and returns an error message if needed during the antimalware scan. | RMADFE-2852 | ADO-225895 |
| The Hardware settings in Forest Recovery Console must be disabled if there is no DRE license. | RMADFE-2848 | ADO-218526 |
| Recovery Manager for AD generates too many progress logs in the event of a failure in creating a Bare Metal Recovery backup. | RMADFE-2439 | ADO-218508 |
| Now BMR backups are read-only to ensure that they cannot be unintentionally modified during a malware scan. | RMADFE-2771 | ADO-218322 |
| You may get a confusing event "Information about the computer was read from backup. Original IP address: N/A…" when the target network settings are explicitly specified. | RMADFE-2583 | ADO-218511 |
| The misleading "Start-RMADFileSystemScan did not return a job" error may occur when scanning a BMR backup on Windows 2012 R2 - based DC or earlier. | RMADFE-2854 | ADO-218528 |
| Known Issue | ID (old) | ID (new) |
|---|---|---|
| Cannot perform RMAD upgrade if the SQL Server Always On group is enabled for the reporting database. | RMADFE-1146 | ADO-220503 |
| When a user cancels the data replication process by Ctrl + C, by logoff, etc, the status of the replication session is stuck at "Running". | RMADFE-1271 | ADO-220508 |
| Customer can add a few instances of the same RMAD console (by domain name and by IP). | RMADFE-1276 | ADO-220509 |
| Cannot disable replication schedule when there is no replication console (the replication console was deleted). | RMADFE-1283 | ADO-220511 |
| Backups may contain invalid FQDNs that are registered automatically, so they cannot be selected in the Forest Recovery Console. Workaround: Use the Active Directory browse method tо add the DCs to a collection when creating backups, or perform backup creation for the DCs (with correct FQDN) directly. To use the Active Directory browse method, click All Domain Controllers in the console tree, right-click a domain controller on the right pane and press Add to Collection. | RMADFE-2851 | ADO-220570 |
| Recovery Manager for Active Directory does not show changes to GPO administrative templates in the GPO comparison report. | RMADFE-805 | ADO-220632 |
| Group Policy restore might fail with the error "Network access is denied”. | RMADFE-2162 | ADO-226664 |
| Online Restore Wizard does not work on Windows Server 2016 with LSA protection and Secure Boot enabled. | RMADFE-1996 | ADO-226670 |
| Recovery Manager Portal upgrade fails when upgrading from 10.1 HF1 or earlier to 10.1 HF2 or later. You must reinstall the Recovery Manager Portal when upgrading instead. | RMADFE-3122 | ADO-229151 |
| Known Issue | ID (old) | ID (new) |
|---|---|---|
| SYSVOL may not work correctly if a domain controller that was selected for the authoritative SYSVOL restore cannot be restored. | RMADFE-1111 | ADO-220501 |
| Update/recreate ISO image on the "Ensure that Quest Recovery Media is available" step when agent inside ISO is outdated. Happens after product update. | RMADFE-2220 | ADO-226671 |
| The start type of Windows Defender Firewall service cannot be restored in Windows Server 2019. | RMADFE-2228 | ADO-226672 |
© 2024 Quest Software Inc. ALL RIGHTS RESERVED. Terms of Use Privacy Cookie Preference Center
