Grafvision - Fotolia
In addition to the native Windows Server Backup tool, there are several third-party tools that can help administrators back up Active Directory. For example, Veeam Explorer (part of Veeam Backup), Dell's Recovery Manager for Active Directory and Acronis Backup Advanced for Active Directory can restore individual Active Directory objects from backups.
The scope of features can vary between products, but there are some worthwhile capabilities to consider. Restoration options are some of the most valuable abilities for an Active Directory backup tool. Granular file, object, organizational unit, or attribute restoration -- such as user accounts or group memberships -- without the need to restart domain servers is preferable compared to a complete system state or even full system backup restoration.
Consider reporting and alerting features in tools that can compare the current Active Directory state with existing backups and recommend the most effective backup options. Auditing capabilities can report on changes to AD objects, when changes occurred and who made them; this can be crucial for organizations responsible for compliance and auditing. Look for alerting and notification features to ensure backups are successful or errors get addressed quickly.
Also look for tools that seamlessly interact with native Windows Server tools, such as Active Directory Recycle Bin, to save time and trouble -- or eliminate the need to develop scripts to provide this integration. Look for scheduling flexibility so AD backups can be performed during off-peak traffic hours and backups can be replicated off-site when bandwidth demands are lower.
Considering the importance of domain controllers and support, it's critical to evaluate prospective AD backup tools in a lab environment and through limited proof-of-principle projects before making a purchase commitment or rolling the tool out to a production environment. Admins should also follow good backup practices and manage AD backups for every domain and location across the enterprise.
Active Directory backup and restoration methods
Leaving Active Directory for cloud management services
Third-party Active Directory audit tools
Dig Deeper on Windows systems and network management
Related Q&A from Stephen J. Bigelow
WET code leaves apps bogged down. Learn how to reduce the challenges brought on by code redundancy by programming based on the DRY principle. Continue Reading
A virtualization layer in an embedded system provides better efficiency for tasks such as network virtualization. Some examples of embedded ... Continue Reading
An embedded hypervisor offers several benefits, such as VM security, system reliability and improved hardware use, and is ideal for admins looking to... Continue Reading
Have a question for an expert?
Please add a title for your question
Get answers from a TechTarget expert on whatever's puzzling you.