Adrestore.Net Vs NTDSUtil
I am sure there is an expert out there who used both Adrestore.Net as well as (AD authoritative Restore+NTDSutil). Can you please tell me the difference?
it seems like the Adrestore.net is more simpler than restoring the AD system state from Backup then restarting the DC to AD restore mode then use NTDSUtil to authoritatively restore the objects.
Since Adrestore.net is simpler and free, why would administrators use the lengthy procedure of AD Authoritative restore, I have described.
Thanks
it seems like the Adrestore.net is more simpler than restoring the AD system state from Backup then restarting the DC to AD restore mode then use NTDSUtil to authoritatively restore the objects.
Since Adrestore.net is simpler and free, why would administrators use the lengthy procedure of AD Authoritative restore, I have described.
Thanks
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
sorry, I guess step 1 should be:
1-Take the DC offline, then do System State restore from the backup tape.
1-Take the DC offline, then do System State restore from the backup tape.
ASKER
I believe I am still confused on step 1:
1-Restart the DC into AD restore mode, then restore the system state.
Stay in the AD Restore Mode and use NTDsutil to authoritatively restore the deleted object.
1-Restart the DC into AD restore mode, then restore the system state.
Stay in the AD Restore Mode and use NTDsutil to authoritatively restore the deleted object.
Yes you stay in DSRM and mark the object as authoritative.
ASKER
<<Yes you stay in DSRM and mark the object as authoritative.>>
The confusion is when Restoring the System state of the yesterday backup:
-Should I leave the DC as it is, online and replicating with other DCs, and restore the system state?
-Should I disconnect it from the network, for instance unplug the network cable, and restore the system state?
-Should I restart in DSRM and restore the system state?
The confusion is when Restoring the System state of the yesterday backup:
-Should I leave the DC as it is, online and replicating with other DCs, and restore the system state?
-Should I disconnect it from the network, for instance unplug the network cable, and restore the system state?
-Should I restart in DSRM and restore the system state?
ASKER
http://technet.microsoft.com/en-us/library/bb727048.aspx
I guess I have to log into DRSM mode and do system state restore from backup tape then staying at the DRSM mode I will use ntdsutil to do the authoritative restore.
I guess I have to log into DRSM mode and do system state restore from backup tape then staying at the DRSM mode I will use ntdsutil to do the authoritative restore.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Adrestore is easier to use than LDP.exe.
Adrestore doesn't restore Group membership
OK, for now I guess the best way to go is Authoritative Restore.
it says that you take a DC offline, but I believe if you have 3,4,5 DCs replicating, taking one offline will not do any harm.
Let me see if I am correct in implementing an Authoritative restore.
1-While the DC is still online, I should do System State restore from the backup tape.
2-When the restore of system state to the online DC is completed successfuly, I will reboot the DC to AD Restore Mode, by pressing F8 at the reboot.
3-Run NTDSutil and implement the authoritative restore.
4-Restart the DC to normal mode.
I believe this is how it should be done.
I prefer the authoritative restore since I don't have to worry if there is any object or attribute missing.