250 likes | 442 Views
Module 9: Planning for Active Directory Data Recovery and Maintenance. Overview. Active Directory Data Store Model Active Directory Data Store Process Introduction to Active Directory Data Store Files Maintaining Active Directory Recovering Active Directory
E N D
Module 9: Planning for Active Directory Data Recovery and Maintenance
Overview • Active Directory Data Store Model • Active Directory Data Store Process • Introduction to Active Directory Data Store Files • Maintaining Active Directory • Recovering Active Directory • Planning for Active Directory Backup
+ Transaction Log Entries Not Written to Database Directory System Agent Database File Database Layer NTFS Extensible Storage Engine Database Active Directory Data Store Model Client Access Interfaces The Current Database
Active Directory Data Store Process Create New User Transaction Created Transaction Log File Written Transaction Written Buffered Database Written Transaction Committed Disk Database Written Transaction Completed
Reserved Logs Patch File Introduction to Active Directory Data Store Files Data Log Files Transaction Logs Database File Checkpoint File
The Active Directory Database File • Contains All Objects in Active Directory • Single File for Each Domain Controller • Should Be Regularly Backed Up • Can Be Included in Routine File Backup • Stores Information in Tables
1 MB 3 MB 10 MB Renamed The Transaction Log Files Each Previous Log Is Renamed After 10 MB of Data Is Accepted Current Log Previous Logs EdbOOOO1.log EdbOOOO2.log . . . EdbOOOO3.log Edb.log New Edb.log (10 MB) Logging Can Be Circular or Non-circular
Ntds.dit Checkpoint Files Transaction Log Entries Written to the Database Edb.chk Transaction Log Entries Not Yet Written to the Database Edb.log
Reserved Log Files • Low Disk Space Situations • Assumes the Role of a Normal Transaction Log Transaction Logs Res1.log Res2.log
Ntds.pat File Patch Files • Patch (.pat) Files Are Only Used During Online Backup • Ntds.pat Committed Uncommitted Ntds.dit File
Maintaining Active Directory • Automatic Database Cleanup • Manual Database Cleanup
Automatic Database Cleanup • Garbage Collection Occurs at 12-Hour Intervals • Unneeded transaction log files deleted • Obsolete objects deleted • Online database defragmentation performed
Manual Database Cleanup • Offline Database Defragmentation Tool • Reorders objects • Can reduce database size • LostAndFound Container • Contains misplaced objects • Should be examined occasionally
Recovering Active Directory • Non-Authoritative Restore • Authoritative Restore • Recovery Without Restore
Non-Authoritative Restore • Depends on Backup, Replication, and Transaction Logs for Recovery and Includes • Placing domain controller in directory safe mode • Restoring data • Writing flag to registry to trigger a consistency check and re-indexing • Replicating bringing the restored server to the current database state
Authoritative Restore • Authoritative Restore Is a Partial Restore
Recovery Without Restore • Use Transaction Logging for Recovery • No restore needed • Circular logging must not be enabled
Planning for Active Directory Backup • Preferred Disk Configurations • Determining Hardware Needs • Creating a Backup Strategy
Preferred Disk Configurations • Enhanced System Performance and Reliability • Preferred Configuration • Place Windows 2000 system files, and Active Directory database file and transaction log files on separate disks
Determining Hardware Needs • Predict the Size of Your Active Directory • Determine number of objects • Take into consideration the addition of attributes • Test Your Prediction • Double Your Prediction for Actual Production
Creating a Backup Strategy • Hardware • Backup Method • Off-Site Storage • Test Restores
Best Practices Plan for Backup and Recovery Early Keep the Database Files and Transaction Logs on Separate Drives Predict Active Directory Size Develop, Document, and Enforce a Backup Policy
Review • Active Directory Data Store Model • Active Directory Data Store Process • Introduction to Active Directory Data Store Files • Maintaining Active Directory • Recovering Active Directory • Planning for Active Directory Backup