AD Backup & Restore | Steps, Flowchart, Architecture Diagram

1.Install Windows Server Backup Feature

Before taking an AD backup, the backup feature must be installed in Server Manager.

How to use the Windows Server Backup tool | TechTarget

What happens here

  1. Open Server Manager
  2. Click Add Roles and Features
  3. Go to Features
  4. Select Windows Server Backup
  5. Install the feature

After installation, the backup tool becomes available in Server Manager → Tools.


2.Opening Windows Server Backup

AD Forest Recovery - Backing up the System State data | Microsoft Learn

Steps

  1. Open Server Manager
  2. Click Tools
  3. Select Windows Server Backup
  4. Click Local Backup
  5. Choose Backup Once or Backup Schedule

This launches the Backup Wizard where you configure the backup.


3.Selecting System State for Active Directory Backup

AD Forest Recovery - Backing up the System State data | Microsoft Learn

Important Step

During the wizard:

  1. Select Different Options
  2. Choose Custom
  3. Click Add Items
  4. Select System State

System State includes:

  • Active Directory database
  • SYSVOL folder
  • Registry
  • Boot files
  • COM+ database

These components are critical for restoring a Domain Controller.


4.Configuring Backup Schedule

Here you choose:

  • Backup frequency
  • Backup time
  • Storage location

Typical schedule used in companies:

  • Daily backup at night
  • Weekly full backup
  • Monthly archive backup

5.Restoring Active Directory (Recovery Wizard)

Restore Process

  1. Open Windows Server Backup
  2. Click Recover
  3. Choose backup location
  4. Select System State
  5. Restore to Original Location

After restoration, the server will restart and Active Directory will be restored.


6.DSRM (Directory Services Restore Mode)

For AD recovery, the server must boot into Directory Services Restore Mode (DSRM).

In this mode:

  • Active Directory services are stopped
  • Database can be restored safely
  • Administrator logs in with DSRM password

7.What Happens After Restore

After restoration:

  • Users return
  • Groups return
  • Organizational Units return
  • Security permissions return
  • Domain Controller starts replication with other DCs

If you perform Authoritative Restore, the restored objects overwrite data on other domain controllers.

 

Visual Flow of AD Backup & Restore

Backup Process:

Server Manager

Install Windows Server Backup

Open Windows Server Backup

Backup Once / Backup Schedule

Select Custom Backup

Add Items → System State

Select Destination

Start Backup

Backup Created

Restore Process:

Boot into DSRM

Open Windows Server Backup

Recover

Select Backup Location

Choose System State

Restore AD


AD Backup and Restore Architecture Diagram:



Subscribe to my YouTube channel: www.youtube.com/@Stack_Tech

Comments

Post a Comment

Popular posts from this blog

Active Directory Overview (Windows Server) for Interview Preparation

Image
What is Active Directory ? Active Directory (AD) is Microsoft's directory service used to Manage below Network objects and Resources Manage users Manage Computers Manage Groups Control access to resources apply security policies     We can call AD as : A centralized brain of windows network Without AD: Every computer has its own users Passwords aren't Shared Policies must be configured one-by-one. With AD: one login works everywhere. Permission are controlled centrally. Security is enforced automatically. Active Directory Web Services Port number : 9389 Why Active Directory Exists ? Imagine a company having 1000 Employees: Without AD 1000 local accounts per Server. Manual access control. No central security. Difficult to Manage. With AD: One user account per employee login from any company PC Central password rules Easy onboarding or Offboarding Core Components of Active Directory ? Domain Domain Controller (DC) Objects Organizational units (OUs) Domain : A domain is a logica...
Read more

Desktop Support Interview Q&A (Beginner Level)

Image
1) What is active directory? Active directory authorizes and authenticates all users and computers in a window domain network, ensuring the security of the computer and software. Through active directory various functions can be managed like creating admin users, connecting to printers or external hard drives.   2) What is DHCP and what it is used for? DHCP stands for dynamic host configuration protocol. It is used to allocate IP addresses to a large number of the computer system in a network.   It helps in managing the large number of IPs very easily.   3) What is scope and super scope? Scope consists of an IP address like gateway IP, subnet mask, DNS server IP. It can be used to communicate with the other PCs in the network. The super scope becomes when you combine two or more scopes together.   4) What is DNS? DNS mean Domain Naming Service, and it is used for resolving IP addresses to name and names to IP address. DNS is like a translator for ...
Read more

IT Abbreviations Explained for Beginners | Most Asked in Interviews

Image
Important IT & computer-related words with their full forms — useful for S chool, College, Competitive Exams, and Interviews . COMPUTER - Common Operating Machine Purposely Used for Technological and Educational Research IT – Information Technology CPU – Central Processing Unit ALU – Arithmetic Logic Unit CU – Control Unit RAM – Random Access Memory ROM – Read Only Memory HDD – Hard Disk Drive SSD – Solid State Drive JPG/JPEG – Joint Photographic Experts Group PNG – Portable Network Graphics USB – Universal Serial Bus VDU – Visual Display Unit UPS – Uninterruptible Power Supply BIOS – Basic Input Output System CMOS – Complementary Metal Oxide Semiconductor CD – Compact Disc DVD – Digital Versatile Disc LED – Light Emitting Diode LCD – Liquid Crystal Display SMPS – Switched Mode Power Supply NIC – Network Interface Card GPU – Graphics Processing Unit OCR –...
Read more