BACKING UP AND RESTORING ACTIVE DIRECTORY (AD)

               Back up of Active Directory is very important. If there is only one DC in a domain network , it is crucial to take back up of Active Directory. Back up is also important in a multi DC domain network. Active Directory can easily be restored using the back up file you have created.

HOW TO TAKE BACK UP OF AD?
           To take back up of AD, just back up the 'System State Data' of the DC.

1. Go to your DC and in the RUN, type:
               ntbackup
2. Click O.K.
3. Click Next > Back up files and settings.
4. Click Next > Let me choose what to back up.
5. Click Next > Click on 'My Computer' and select 'System State'.
6. Click Next > click on Browse and select a drive to save your backup.
7. Type filename > Save.
8. Click Next > Finish.
9. When back up is completed, write the back up file to a CD/DVD.


HOW TO RESTORE OR RECOVER AD FROM DISASTER?

                     If AD gets corrupted, you should reinstall OS and then install AD and then restore AD using the back up file. To restore AD, we have two methods:

1. Non-Authoritative Restore
2. Authoritative Restore

               In non-authoritative restore, the objects restored in the AD are not replicated to other DCs in the network but in authoritative restore, the objects restored are also replicated to other DCs.In a multi DC network, we usually take authoritative restore.

HOW TO TAKE NON-AUTHORITATIVE RESTORE?

1. Go to your DC and delete some users.
2. Now restart your DC.
3. When DC starts, press F8.
4. Select 'Directory Services Restore Mode'.
5. Type username as Administrator and password which you have given during running Active Directory Installation Wizard.
6. Now click on the back up file and click next.
7. Select 'Restore files and settings'.
8. Click next > Select your backup > next.
9. Click Finish > O.K.
10. Restart your DC.
11. You will get your deleted users.


HOW TO TAKE AUTHORITATIVE RESTORE?

1. First take non-authoritative restore.
2. Restart your DC and press F8.
3. Select 'Directory services Restore Mode'.
4. In the RUN, type cmd and give the following commands one by one, pressing enter at each command:

                  Ntdsutil

                  authoritative restore

                  restore database

5. Click Yes.

6. Restart your DC.