AAD connect backup/restore

fsdg 986 Reputation points
2021-08-30T07:15:41.81+00:00

Hello,
what is recovery plan in place if something were to happen to AAD connect single server.
Is it supported to revert AAD connect from snapshot?DC is supported to revert from snapshot.What about AAD connect?
What are the disaster recovery procedure for single AAD connect server?Exporting configuration(.json) is not option for me because since 1.5.42.0 version exporting is supported and I need to upgrade from version before.
If single AAD connect server crashes is it possible to install on another server and configure it from beginning without backup?

Thank you

Microsoft Exchange Hybrid Management
Microsoft Exchange Hybrid Management
Microsoft Exchange: Microsoft messaging and collaboration software.Hybrid Management: Organizing, handling, directing or controlling hybrid deployments.
1,960 questions
Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
20,189 questions
{count} votes

Accepted answer
  1. Sarat Chandra 581 Reputation points
    2021-08-30T13:13:47.877+00:00

    1)what is recovery plan in place if something were to happen to AAD connect single server.
    Solution:
    Disaster recovery
    Part of the implementation design is to plan for what to do in case there is a disaster where you lose the sync server. There are different models to use and which one to use depends on several factors including:
    • What is your tolerance for not being able make changes to objects in Azure AD during the downtime?
    • If you use password synchronization, do the users accept that they have to use the old password in Azure AD in case they change it on-premises?
    • Do you have a dependency on real-time operations, such as password writeback?
    Depending on the answers to these questions and your organization’s policy, one of the following strategies can be implemented:
    • Rebuild when needed.
    • Have a spare standby server, known as staging mode.
    • Use virtual machines.
    If you do not use the built-in SQL Express database, then you should also review the SQL High Availability section.

    2) What are the disaster recovery procedure for single AAD connect server?Exporting configuration(.json) is not option for me because since 1.5.42.0 version exporting is supported and I need to upgrade from version before.
    If single AAD connect server crashes is it possible to install on another server and configure it from beginning without backup?

    Solution: We can backup current Azure AD Connect Configuration is "export Server Configuration", and we can export the settings if you go to File - Export Configuration.

    In Azure AD Connect - File - Export ,You can backup. But you cannot use the backup from one server and feed it to another.
    There is a AAD Connect Configuration Documenter tool which allows you to generate documentation of an Azure AD Connect installation.

    Reference : ADConnect Backup Strategy (microsoft.com)==>https://social.msdn.microsoft.com/Forums/azure/en-US/88403abb-a013-4cf0-9a86-eea5ab0d402f/adconnect-backup-strategy

    If the answer is helpful, please click Accept Answer and up-vote, so that it can help others in the community looking for help on similar topics.

    1 person found this answer helpful.
    0 comments No comments

2 additional answers

Sort by: Most helpful
  1. SUNOJ KUMAR YELURU 14,011 Reputation points MVP
    2021-08-30T07:50:25.67+00:00

    Hi @fsdg

    AAD Connect configuration documenter is a tool to generate documentation of an Azure AD Connect installation. Currently, the documentation is only limited to the Azure AD Connect sync configuration.
    more details

    Since, your using low AAD connect version, and to support exporting required 1.5.42.0 or higher.
    more details Import/exporting AAD config settings

    Alternative solution taking VM level backup using azure native backup or third party backup solution for restoring the VM in case of OS crash or application crash.

    If the Answer is helpful, please click Accept Answer and up-vote, so that it can help others in the community looking for help on similar topics.

    2 people found this answer helpful.
    0 comments No comments

  2. Andreas Baumgarten 100.8K Reputation points MVP
    2021-08-30T07:35:59.007+00:00

    Hi @fsdg ,

    maybe this link is helpful?
    https://learn.microsoft.com/en-us/azure/active-directory/hybrid/how-to-connect-sync-staging-server

    ----------

    (If the reply was helpful please don't forget to upvote and/or accept as answer, thank you)

    Regards
    Andreas Baumgarten

    1 person found this answer helpful.
    0 comments No comments