Recovery Manager for Active Directory allows you to retry selected backup sessions. You can retry the creation of backups for individual computers or for all computers with a particular backup creation result. Any backup session can be retried regardless of its result.
To retry a backup session
To retry backups for individual computers
Recovery Manager for Active Directory allows you to protect your backups by encrypting them. You can enable the backup encryption in the Defaults dialog box for the Computer Collections node or a Computer Collection (Computer Collection properties), as well as in the Backup Wizard.
To enable backup encryption
A password can contain any combination of letters, numerals, spaces, and symbols. Passwords are case sensitive, so if you vary the capitalization when you assign the password, you must type the same capitalization when entering the password. You can change the backup protection password later by clicking Set Password on the Backup tab. Write the password down and keep it in a secure place. If you lose the password, you cannot restore data from that backup since Recovery Manager for Active Directory asks you to type the password.
This password is used to generate a passphrase with which the backup is encrypted. The password cannot be used directly to unlock the backup container *.vhd(x) file.
Important: If you are planning to use the backups created with Recovery Manager for Active Directory in the Windows Backup utility (NTBackup), do not enable backup encryption. The Windows Backup utility cannot restore data from encrypted backups.
To encrypt System State backups, the product uses Microsoft's implementation of the AES 256 algorithm from RSA, Inc. (Microsoft RSA Base Provider), with the maximal (normally, 128-bit) cipher strength.
For Bare Metal Recovery backup encryption, Recovery Manager for Active Directory uses a virtual hard disk encrypted with BitLocker as a container for the backup (256-bit AES encryption). Only backup volume is encrypted on the VHD disk.
The BitLocker Drive Encryption feature should be installed on all backed up domain controllers and on the Forest Recovery Console machine to support encrypted BMR backups. But note that the BitLocker feature does not encrypt DC drives automatically.
Encrypted BMR backup
Not encrypted BMR backup
With Recovery Manager for Active Directory, you can back up Active Directory Lightweight Directory Services (AD LDS), previously known as Active Directory Application Mode (ADAM), by using one of the following methods:
Complete these steps: