In addition to the native Windows Server Backup tool, there are several third-party tools that can help administrators...
back up Active Directory. For example, Veeam Explorer (part of Veeam Backup), Dell's Recovery Manager for Active Directory and Acronis Backup Advanced for Active Directory can restore individual Active Directory objects from backups.
The scope of features can vary between products, but there are some worthwhile capabilities to consider. Restoration options are some of the most valuable abilities for an Active Directory backup tool. Granular file, object, organizational unit, or attribute restoration -- such as user accounts or group memberships -- without the need to restart domain servers is preferable compared to a complete system state or even full system backup restoration.
Consider reporting and alerting features in tools that can compare the current Active Directory state with existing backups and recommend the most effective backup options. Auditing capabilities can report on changes to AD objects, when changes occurred and who made them; this can be crucial for organizations responsible for compliance and auditing. Look for alerting and notification features to ensure backups are successful or errors get addressed quickly.
Also look for tools that seamlessly interact with native Windows Server tools, such as Active Directory Recycle Bin, to save time and trouble -- or eliminate the need to develop scripts to provide this integration. Look for scheduling flexibility so AD backups can be performed during off-peak traffic hours and backups can be replicated off-site when bandwidth demands are lower.
Considering the importance of domain controllers and support, it's critical to evaluate prospective AD backup tools in a lab environment and through limited proof-of-principle projects before making a purchase commitment or rolling the tool out to a production environment. Admins should also follow good backup practices and manage AD backups for every domain and location across the enterprise.
Active Directory backup and restoration methods
Leaving Active Directory for cloud management services
Third-party Active Directory audit tools
Dig Deeper on Microsoft Active Directory Backup and Restore
Related Q&A from Stephen J. Bigelow
Microsoft offers a free antimalware tool for client and server systems, but administrators need to tune the layers of protection to avoid problems. Continue Reading
Testing Exchange information rights management functionality can be tedious, but Microsoft offers a dedicated cmdlet for Exchange 2016 administrators... Continue Reading
Not every tool is right for the job of backing up data. Find out what limits System Center DPM 2016 protection and which alternatives cover what it ... Continue Reading
Have a question for an expert?
Please add a title for your question
Get answers from a TechTarget expert on whatever's puzzling you.