How to backup and restore Windows Active Directory Sites and Services and DNS

CGOhio 20 Reputation points
2023-12-18T19:50:13.5533333+00:00

The backup software I use only backs up objects in the NTDS database. I understand that DNS and Sites and Services are not part of or in the NTDS database. What is the recommended way to backup Sites and Services and DNS? Please provide utility name and steps for both backup and restore.

Active Directory
Active Directory
A set of directory-based technologies included in Windows Server.
6,149 questions
Active Directory Federation Services
Active Directory Federation Services
An Active Directory technology that provides single-sign-on functionality by securely sharing digital identity and entitlement rights across security and enterprise boundaries.
1,219 questions
Windows Server Backup
Windows Server Backup
Windows Server: A family of Microsoft server operating systems that support enterprise-level management, data storage, applications, and communications.Backup: A duplicate copy of a program, a disk, or data, made either for archiving purposes or for safeguarding valuable files from loss should the active copy be damaged or destroyed.
464 questions
0 comments
Accepted answer
  1. Daisy Zhou 20,791 Reputation points Microsoft Vendor
    2023-12-19T06:26:40.8033333+00:00

    Hello CGOhio,

    Thank you for posting in Q&A forum.

    For back up Domain Controller, we suggest you use built-in Windows Server Backup tool below. You should install this role on every Domain Controller.
    User's image

    Backup Once or backup Schedule.
    ![A screenshot of a social media post

    Description automatically generated](/api/attachments/1fb2cfe2-20ae-4d9e-a44b-2a91651649af?platform=QnA)

    Select backup configuration: Full server (recommended) or Custom (System state)
    User's image

    Then Active Directory Sites and Services and DNS will be backup by this way.

    Here you can restore all the data you backed up.

    User's image

    Hope the information above is helpful.

    If you have any question or concern, please feel free to let us know.

     

    Best Regards,

    Daisy Zhou

    ============================================

    If the Answer is helpful, please click "Accept Answer" and upvote it.

    0 comments

1 additional answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. Q&A Assist
    2023-12-18T19:50:13.5566667+00:00
    AI generated content. This question contains an answer created with AI from Q&A Assist. Learn more

    To backup Sites and Services and DNS in Windows Active Directory, you can use the built-in Windows Backup Utility. However, incremental backups of Active Directory Domain Services are not supported when using the built-in Windows Backup Utility; full backups are required. It is recommended to create a recovery plan prior to restoration, and to ensure that the age of the backup should not exceed the Active Directory Tombstone Lifetime. Restoration of a backup older than the tombstone lifetime may cause the restored domain controller to have objects that will not be replicated on other DCs. This occurs if an object is deleted after the backup is made and the restore occurs after the tombstone for the deleted object has been permanently removed. The restored DC would have the object as it existed before the deletion, and the other DCs would have no record that the object ever existed. In this case, an administrator will have to manually delete each non-replicated object on the restored domain controller.

    References:

    0 comments