FIM Synchronization Service Backup and Restore

Applies To: Forefront Identity Manager 2010

The FIM Synchronization Service stores data in two places: in the SQL Server 2008 database and in the internal configuration. There is also an encryption key that should be backed up.

Backing Up the FIM Synchronization Service

To ensure that you can properly preserve and restore your FIM environment, you must back up the following items:

  1. The SQL Server database, which is called FIMSynchronizationService by default. You must first ensure that no management agents are running. However, it is not necessary to stop the FIM Synchronization Service during the backup process.

  2. Encryption key

    To back up the FIM Synchronization Service encryption key

    1. On the computer hosting the FIM Synchronization Service, click Start. Type Synchronization Service Key Management and then click Synchronization Service Key Management.

    2. Ensure that Export Key Set is selected and then click Next.

    3. If prompted, enter the service account credentials or appropriate administrative credentials for the FIM Synchronization Service. This may be necessary if your account does not have permission to read the keys.

    4. Type the file path to the backup location or click the ellipses to browse to the location. If you browse to the location, click Save. Click Next.

    5. Verify the backup location and then click Finish.

    6. When the backup is confirmed, click Close. Be sure the file is stored in a trusted and secure location.

      Note

      As a best practice, the encryption key backup should be stored in a different location than the FIM Synchronization Service database.

Restoring the FIM Synchronization Service

Use the following procedure to restore the FIM Synchronization Service.

To restore the FIM Synchronization Service

  1. Restore the SQL Server database for the FIM 2010 database.

  2. Install the FIM 2010 Synchronization Service on a computer in the same Active Directory domain as your previous FIM Synchronization Service. When you install the service, be sure to select the Re-Use Existing Database option. During installation you will also be required to provide the encryption keys that you previously exported.

  3. Start the FIM Synchronization Service.

See Also

Concepts

FIM 2010 Backup and Restore Guide
Recommended FIM Backup Schedule
FIM Service Backup and Restore
FIM Portal Backup and Restore
Testing FIM Backups
Case Study: How Microsoft Deploys Disaster Recovery for FIM 2010