What other alternative can I consider?
Routine backups. It's always recommended to have two of more domain controllers for high availability and disaster mitigation. Also
https://learn.microsoft.com/en-us/windows-server/identity/ad-ds/plan/security-best-practices/securing-domain-controllers-against-attack
--please don't forget to upvote
and Accept as answer
if the reply is helpful--