Active Directory Disaster Recovery


Active Directory Disaster Recovery
eBook: $35.99
Formats: PDF, PacktLib, ePub and Mobi formats
$23.39
save 35%!
Print + free eBook + free PacktLib access to the book: $95.98    Print cover: $59.99
$59.99
save 37%!
Free Shipping!
UK, US, Europe and selected countries in Asia.
Also available on:
Overview
Table of Contents
Author
Support
Sample Chapters
  • Essential disaster recovery planning/response book
  • Configure and strengthen Active Directory to increase resilience
  • Practical diagnosis of failures
  • Design and implement an organizational Disaster Recovery plan
  • Symptom-Cause-Recovery approach

Book Details

Language : English
Paperback : 252 pages [ 235mm x 191mm ]
Release Date : June 2008
ISBN : 1847193277
ISBN 13 : 9781847193278
Author(s) : Florian Rommel
Topics and Technologies : All Books, Microsoft Servers, Networking and Servers, Enterprise, Microsoft


Table of Contents

Preface
Chapter 1: An Overview of Active Directory Disaster Recovery
Chapter 2: Active Directory Design Principles
Chapter 3: Design and Implement a Disaster Recovery Plan for Your Organization
Chapter 4: Strengthening AD to Increase Resilience
Chapter 5: Active Directory Failure On a Single Domain Controller
Chapter 6: Recovery of a Single Failed Domain Controller
Chapter 7: Recovery of Lost or Deleted Users and Objects
Chapter 8: Complete Active Directory Failure
Chapter 9: Site AD Infrastructure Failure (Hardware)
Chapter 10: Common Recovery Tools Explained
Appendix A: Sample Business Continuity Plan
Bibliography
Index
  • Chapter 1: An Overview of Active Directory Disaster Recovery
    • What is Disaster Recovery?
    • Why is Disaster Recovery Needed?
    • Conventions Used in This Book
    • Disaster Recovery for Active Directory
    • Disaster Types and Scenarios Covered by This Book
      • Recovery of Deleted Objects
      • Single DC Hardware Failure
      • Single DC AD Corruption
      • Site AD Corruption
      • Corporate (Complete) AD Corruption
      • Complete Site Hardware Failure
      • Corporate (Complete) Hardware Failure
    • Summary
  • Chapter 2: Active Directory Design Principles
    • Active Directory Elements
      • The Active Directory Forest
      • The Active Directory Tree
      • Organizational Units and Leaf Objects
      • Active Directory Sites
      • Group Policy Objects
    • Domain Design: Single Forest, Single Domain, and Star Shaped
    • Domain Design: Single Forest, Single Domain, Empty Root, Star Shaped
    • Domain Design: Multi-Domain Forest
    • Domain Design: Multi-Forest
    • LRS—Lag Replication Site
    • Design Your Active Directory
      • Naming Standards
        • Username and Service Account Naming
        • Group Policy Naming
      • Design with Scalability in Mind
      • Flexible Single Master Operation Roles (FSMO)
      • Migration from Other Authentication Services
    • Keeping Up-To-Date and Safe
      • Documentation
      • Backups
    • Summary
  • Chapter 3: Design and Implement a Disaster Recovery Plan for Your Organization
    • Analyze the Risks, Threats, and the Ways to Mitigate
    • The Two-Part, 10 Step Implementation Guide
      • Part One: The Steps for General Implementation
        • Calculate and Analyze
        • Create a Business Continuity Plan
        • Present it to the Management (Part 1 and 2)
        • Define Roles and Responsibilities
        • Train the Staff for DR
        • Test Your DRP Frequently
      • Part Two: Implementing a Disaster Recovery Plan for AD
        • Writing is Not All
        • Ensure that Everyone is Aware of Locations of the DRP
        • Define the Order of Restoration for Different Systems (Root First in Hub Site, then Add One Server etc.)
        • Go back to "Presentation to Management"
    • Summary
  • Chapter 4: Strengthening AD to Increase Resilience
    • Baseline Security
      • Domain Policy
      • Domain Controller Security Policy
    • Securing Your DNS Configuration
      • Secure Updates
      • Split Zone DNS
      • Active Directory Integrated Zones
      • Configuring DNS for Failover
      • DHCP within AD
    • Tight User Controls and Delegation
      • Proper User Delegation
        • Group Full control
        • Group with Less Control
        • Group to Allow Password Resets
    • Central Logging
    • Proper Change Management
    • Virtualization and Lag Sites
      • Resource Assignment
      • Backups and Snapshots
      • Deployment
      • Sites and Services Explained
        • Creating Sites, Subnets, and Site Links
        • Setting Replication Schedules and Costs
        • Cost
        • Scheduling
        • Site Scheduling
        • Link Scheduling
      • Lag Sites and Warm Sites
        • Configuring a Lag Site
        • Creating, Configuring and Using a Warm Site
    • Summary
  • Chapter 5: Active Directory Failure On a Single Domain Controller
    • Problems and Symptoms
      • Symptoms
    • Causes
    • Solution Process
    • Solution Details
      • Verification of Corruption
        • Tools for Verification
      • Sonar
      • Options to Recover and Stop the Spread of Corruption
        • Option One: Restoring AD from a Backup
        • Option Two: Replication
        • Option Three: Rebuild DC with Install from Media
    • Summary
  • Chapter 6: Recovery of a Single Failed Domain Controller
    • Problems and Symptoms
    • Causes
    • Solution Process
    • Solution Details
      • Cleaning of Active Directory before Recovery Starts
        • Active Directory Deletion of Old Domain Controller Records
        • DNS and Graphical Actions Needed to Complete the Process
        • Recovery of the Failed DC
    • Summary
  • Chapter 7: Recovery of Lost or Deleted Users and Objects
    • Problems and Symptoms
    • Causes
    • Solution Process
      • Phantom Objects
      • Tombstones
        • Increase the Tombstone Lifetime
      • Lingering Objects
      • Prerequisites
      • Method One: Recovery of Deleted or Lost Objects with Enhanced NTDSutil
      • Method Two: Recovery of Deleted or Lost Objects with Double Restore
      • Method Three: Recovery of Deleted or Lost Objects Done Manually
      • GPO Recovery
        • Backing Up Using the GPMC
        • Restore Using the GPMC
        • If You do not have the GPMC...
      • Summary
  • Chapter 8: Complete Active Directory Failure
    • Scenario
    • Causes
    • Recovery Process
      • Part One: Restore the First DC of Your Root or Primary Domain
      • Part Two: Restore the First DC in Each of the Remaining Domains
      • Part Three: Enable the DC in the Root Domain to be a Global Catalog
      • Part Four: Recover Additional DCs in the Forest by Installing Active Directory
      • Post Recovery Steps
    • Summary
  • Chapter 10: Common Recovery Tools Explained
    • Software for Your DCs and Administration
      • Windows Support Tools
      • Windows Resource Kit Tools
      • Adminpack for Windows XP/Vista Clients
    • Diagnosing and Troubleshooting Tools
      • DcDiag
      • NetDiag
  • Monitoring with Sonar and Ultrasound
    • Introducing Sonar
    • Introducing Ultrasound
      • Details
      • Alert History
      • Summary and Advanced Tabs
    • Summary
  • Appendix A: Sample Business Continuity Plan
    • Nailcorp Business Continuity Plan
      • PURPOSE
    • Description of the Service
    • SCOPE
    • Responsibilities and Roles
    • OBJECTIVES
      • What we are trying to achieve with this document is:
    • COMMUNICATIONS
    • CALL TREE
    • Disaster declaration criteria for Active Directory service
    • Functional restoration
    • Recovery site(s)
    • Necessary alternative site materials
    • TECHNICAL RECOVERY STEPS TO RECOVER A FAILED DC
    • APPENDICES
      • Active Directory Service and support personnel
      • Support documentation for the application/service attached to this plan
      • Shared Contacts
    • Damage Assessment Forms
    • GLOSSARY
  • Bibliography
    • Chapter 1
    • Chapter 2
    • Chapter 3
    • Chapter 4
    • Chapter 5
    • Chapter 6
    • Chapter 7
    • Chapter 8
    • Chapter 9
    • Chapter 10
    • Appendix

Florian Rommel

Florian was born and raised in his native Germany until the age of 15 when he moved with this family to Central America and then the US. He has worked in the IT industry for more then 14 years and has gained a wealth of experience in many different IT environments. He also has a personal interest in Information Security.

His certifications include CISSP, SANS GIAC, MCSE, MCSA, MCDBA, and several others. Together with his extensive experience, he is a qualified expert in the area of Information Security. After writing several Disaster Recovery guides for Active Directory environments he now brings you this unique publication, which he hopes will become a key title in the collection of many Windows Server Administrators and specialists.

Florian lives with his wife and daughter in Finland where he also works as an IT Manager in a global company.

 

Sorry, we don't have any reviews for this title yet.

Submit Errata

Please let us know if you have found any errors not listed on this list by completing our errata submission form. Our editors will check them and add them to this list. Thank you.

Sample chapters

You can view our sample chapters and prefaces of this title on PacktLib or download sample chapters in PDF format.

Frequently bought together

Active Directory Disaster Recovery +    Governance, Risk, and Compliance Handbook for Oracle Applications =
50% Off
the second eBook
Price for both: £35.30

Buy both these recommended eBooks together and get 50% off the cheapest eBook.

What you will learn from this book

The first part covers:

  • Active Directory design principles
  • Proper planning for disaster recovery
  • Preventive measures for your AD
  • Creating a business continuity plan (with a working sample)
  • Configuring lag sites and working in a virtual environment
  • Using and understanding tools to analyze and monitor AD

The second part includes step-by-step instructions to recover from:

  • Single domain controller hardware failure
  • Active Directory corruption on a single domain controller
  • Deleted or lost objects
  • Global Active Directory corruption
  • Site Active Directory infrastructure (hardware) failure
  • Global Active Directory infrastructure (hardware) failure

 

In Detail

Murphy's law states that anything that can go wrong will go wrong. In relation to Information Systems and Technology this could mean an incident that completely destroys data, slows down productivity or causes any other major interruption of your operations or your business. How bad can it get?—"Most large companies spend between 2% and 4% of their IT budget on disaster recovery planning; this is intended to avoid larger losses. Of companies that had a major loss of computerized data, 43% never reopen, 51% close within two years, and only 6% will survive long-term." —Jim Hoffer, Backing Up Business – Industry Trend or Event.

Active Directory (AD) is a great system but it is also very delicate. If you get a problem, you will need to know how to recover from this situation. You will need to know about Disaster Recovery and be prepared with a business continuity plan. If Active Directory is a part of the backbone of your network and infrastructure, the guide to bring it back online in case of an incident needs to be as clear and concise as possible. If all of this happens or if you want to avoid all of this happening, this is the book for you.

Recovering Active Directory from any kind of disaster is trickier than most people think. If you do not understand the processes associated with recovery, you can cause more damage than you fix. This is why you need this book.

This book has a unique approach—the first half focuses on planning and shows you how to configure your AD to be resilient; the second half is response focused and meant as a reference in which we discuss different disaster scenarios. We follow a Symptom-Cause-Recovery approach—so all you have to do is follow along and get back on track.

This book describes the most common scenarios and how to properly recover your infrastructure from them. It contains commands and steps for each process and contains information on how to plan for disaster and how to leverage technologies in your favor in case of a disaster.

You will encounter these types of disaster and incident in the book, and learn how to recover from them:

  • Deleted objects
  • Single domain controller hardware failure
  • Single domain controller AD corruption
  • Site AD corruption
  • Site hardware failure
  • Corporate AD corruption
  • Complete corporate hardware failure

Get expert guidance on planning and implementing Active Directory disaster recovery plans, or jump straight into different recovery scenarios to get your problems solved as quickly and safely as possible if disaster has already struck.

Approach

The book is a combined planning/response-focused book and can be read end to end but also is designed so that the second half can be read standalone, should disaster have struck already. 

Who this book is for

This book is targeted at network security professionals who find themselves charged with creating an Active Directory Disaster Recovery plan or who want to quickly recover once disaster has struck.

This book expects you to be familiar with the basics of Active Directory and Windows Servers.

Code Download and Errata
Packt Anytime, Anywhere
Register Books
Print Upgrades
eBook Downloads
Video Support
Contact Us
Awards Voting Nominations Previous Winners
Judges Open Source CMS Hall Of Fame CMS Most Promising Open Source Project Open Source E-Commerce Applications Open Source JavaScript Library Open Source Graphics Software
Resources
Open Source CMS Hall Of Fame CMS Most Promising Open Source Project Open Source E-Commerce Applications Open Source JavaScript Library Open Source Graphics Software