Something here could help.
--please don't forget to upvote
and Accept as answer
if the reply is helpful--
This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
Hi there,
we have a single Active Directory domain forest with 11 DCs in function level 2016.
For testing a disaster recovery and to implement a testing domain that is almost similar to our productive domain.
So I made a backup (full and only system state) from a DC (VM under Hyper-V) and tried to restore it to another new VM not joined to the domain with same OS version as the backuped DC. The backuped DC had all 5 FSMO roles activated.
First I tried to restore the system state according to MS documentation:
after successfull restore server boots but directly to repair mode without any chance to come back to the server.
Second I tried to restore the bare metall backup.
Boot form Virtual DVD
after reboot server comes up but no AD features available.
Service Intersite Messaging is stopped and not able to get started.
No FSMO role could be forced to seize to the server. No AD snap-in could be started.
Does anybody has a good idea?
Thanks in advance
Bernd
Something here could help.
--please don't forget to upvote
and Accept as answer
if the reply is helpful--
Hi Patrick,
thanks for your help but this was what I described above with the second try and did not work.
Kind Regards
Bernd
Hi
I want to add some things maybe important.
First of all the recovered DC has no NIC plugged in and so no network connecting.
After restoring a complete backup the server comes up without funtional AD. The service Intersite Messaging is stopped and unable to start.
In System Eventlog there are a lot of Informational Events 16647 saying:
The DFS Replication Eventlog: has some 6702 Warnings:
and
Error 1202:
In the Directory Service Eventlog: a lot of 2092 Warnings saying:
Any attempt to seize the roles does not work
And even any attempt to open an AD snap-in is answered by an error saying
P
A simpler solution to implement a testing domain may be to stand up a new one in existing domain, after successful replication you could shut down and move it to isolated location, then in both locations do cleanup to remove unwanted remnants. (new one in existing network and all the others in isolated network)
Clean up Active Directory Domain Controller server metadata
Step-By-Step: Manually Removing A Domain Controller Server
Then in isolated you could seize roles.
-
--please don't forget to upvote
and Accept as answer
if the reply is helpful--