Backing Up and Restoring an Active Directory Server
Article
Active Directory Domain Services provide functions for backing up and restoring data in the directory database. This section describes how to back up and restore an Active Directory server. For more information about backing up an Active Directory server using the utilities provided in Windows 2000 and Windows Server 2003 operating systems, see the applicable Resource Kit, available on the Microsoft TechNet website.
Backup of an Active Directory server must be performed online and must be performed when the Active Directory Domain Services are installed. Active Directory Domain Services are built on a special database and export a set of backup functions that provide the programmatic backup interface. The backup does not support incremental backups when using the built-in Windows Backup Utility. A backup application binds to a local client-side DLL with entry points defined in Ntdsbcli.h.
Restoration of an Active Directory server is always performed offline.
Although the topics in this section describe only how to back up and restore an Active Directory server, be aware that Windows 2000 and the Windows Server 2003 operating systems have several "system state" components that must be backed up and restored together. These system state components consist of:
Boot files such as ntldr, ntdetect, all files protected by SFP, and performance counter configuration
The Active Directory Domain Controller
SysVol (domain controller only)
Certificate Server (CA only)
Cluster database (cluster node only)
Registry
COM+ class registration database
The system state can be backed up in any order, but restoration of the system state must occur in the following order:
Restore the boot files.
Restore SysVol, Certificate Server, Cluster database and COM+ class registration database, as applicable.
Learn how to troubleshoot AD DS service failures or degraded performance. Learn how to recover deleted security objects and the AD DS database, and how to troubleshoot hybrid authentication issues.
As a Windows Server hybrid administrator, you integrate Windows Server environments with Azure services and manage Windows Server in on-premises networks.