Chat now with support
Chat with Support

On Demand Recovery Current - User Guide

About On Demand Recovery Before You Start On Demand Recovery Console Overview Sign up for Quest On Demand Required Permissions Adding an Azure Active Directory Tenant Office 365 Tenant Requirements (Mailbox Data Protection) Access Control Working with On Demand Recovery Backup Unpacking Restoring objects Restoring roles Backup and Restore of Service Principal Objects Restoring Application Proxy settings Backup and Restore of MFA Settings Backup and restore group licenses Backup and restore SharePoint Online resource access Backup and Restore of Devices Backup and Restore of Conditional Access Policies Integration with Recovery Manager for Active Directory Working with Inactive Mailboxes Hybrid Connection Port and Protocol Requirements Restore Email Address/Phone for Self-Service Password Reset Reporting Advanced Search How does On Demand Recovery Handle Object Attributes? What is not protected by Auzure AD Connect in a hybrid environment but can be restored by On Demand Recovery?

Office 365 Tenant Requirements (Mailbox Data Protection)

Office 365 and on-premises Exchange offer some native means of protection against losing valuable data. To prevent the permanent deletion of mailbox data and to be able to restore a mailbox when it is deleted from the Recycle Bin, it is strongly recommend that you use Office 365 retention policy or Litigation Hold (for hybrid configuration).

Office 365 retention policy

Retention policies do two basic things: they either protect data from deletion or delete unnecessary items.

  • Retain content - content cannot be permanently deleted before the end of the retention period.
  • Delete content - unnecessary content is permanently deleted at the end of the retention period.

You can create and manage retention policies on the:

  • Policies page in the Microsoft 365 compliance center.
  • Retention page under Data governance in the Office 365 Security & Compliance Center.

For details, see

Litigation Hold

As an alternative to retention policies, you can place a mailbox on Litigation Hold to preserve all mailbox content, including deleted items and original versions of modified items.

For more information, see

Access Control

Quest On Demand provides permission-based roles to determine what permission level a user has and what tasks the user can perform.

For more details, see Adding users to an organization section in the On Demand Global Settings User Guide.

List of permissions that can be assigned to Recovery module users
  • Can manage backup settings
  • Can download hybrid credentials
  • Can run backup manually
  • Can unpack backups
  • Can run difference report
  • Can restore from objects
  • Can restore from differences
  • Can read backup history
  • Can read unpacked objects
  • Can read differences
  • Can read task history
  • Can read events
  • Can read restore attributes
  • Can read UI projects
  • Can read UI collections
  • Can manage events

Note: On Demand administrators have full access to global settings and all module permissions.

Related Documents

The document was helpful.

Select Rating

I easily found the information I needed.

Select Rating