Content:
Summary
This article describes how to create and run an AD DC recovery plan.
AD DC recovery plan allows performing authoritative restores and nonauthoritative restores.
You might have to perform an authoritative restore if an administrator inadvertently deletes an organizational unit (OU) containing many users. Authoritative restore allows you to mark the OU as authoritative and force the replication process to restore it to all the other domain controllers in the domain.
A nonauthoritative restore allows the entire directory to be restored on a domain controller, without reintroducing or changing objects that have been modified since the backup.
Create and configure an AD DC recovery plan to recover the whole domain authoritatively
To perform an authoritative restore of the selected domain and all child objects:
- Open Cayosoft Guardian Web Portal.
- Expand Forest Recovery node.
- Click on the Recovery Plans node.
- Select Add AD DC recovery plan.
- On Domain Controllers tab, select DC and press Properties.
- Select a backup that will be used to recover the selected domain controller.
- Set Select how to restore AD database option value to Restore the whole domain from backup (authoritative restore).
- (Optionally) Modify Authoritative Restore Version increment if required.
Create and configure an AD DC recovery plan to recover the selected container or an individual object authoritatively (an OU for example)
To perform an authoritative restore of the selected container and all children:
- Open Cayosoft Guardian Web Portal.
- Expand Forest Recovery node.
- Click on the Recovery Plans node.
- Select Add AD DC recovery plan.
- On Domain Controllers tab select DC and press Properties.
- Select a backup that will be used to recover the selected domain controller.
- Change Select how to restore AD database option value to Restore the specified container and all children from backup (authoritative restore). (This option allows restoring subtree and all children of the subtree.)
- Click on Add value under DN of subtree to restore and add one or more distinguished name(s) of the objects to be recovered.
- (Optionally) Modify Authoritative Restore Version increment if required.
Configure an AD DC recovery plan to recover the selected AD DC non-authoritatively
To perform a non-authoritative restore of the selected AD DC:
- Open Cayosoft Guardian Web Portal
- Expand Forest Recovery node
- Click on the Recovery Plans node
- Select Add AD DC recovery plan
- On Domain Controllers tab select DC and press Properties
- Select a backup that will be used to recover the selected domain controller
- Change Select how to restore AD database option value to Restore the specified AD DC from backup (non-authoritative restore). (This option allows restoring subtree and all children of the subtree.)
Run an AD DC recovery plan
- Open Cayosoft Guardian Web Portal.
- Expand Forest Recovery node.
- Click on the Recovery Plans node.
- Select Add AD DC recovery plan and press Run.
- Observe recovery progress.
Review AD DC recovery plan execution results
- Open Cayosoft Guardian Web Portal.
- Expand Forest Recovery node.
- Click on the Recovery Plans node.
- Select your recovery plan and press Properties.
- On the backup plan properties page, switch to an Execution History tab.
- Find a history record for execution of verification, select and press Properties.
- See execution details on the Execution and the Errors and warnings tabs.
Comments
0 comments
Please sign in to leave a comment.