Windows operating systems

Restoring Active Directory objects using the GUI and command line

To restore individual Active Directory objects, you must run the backup-archive client on a domain controller and your user account must be a member of the Administrators group. The Active Directory objects are not displayed in the directory tree if your user account is not a member of the Administrators group.

You can restore active directory objects or tombstone objects using either the GUI or the command line.

To restore individual objects from the GUI:
  1. Click Restore in the IBM Spectrum Protect™ window. The Restore window opens.
  2. Expand the directory tree if necessary. To expand an object in the tree, click the plus sign (+) next to the object.
  3. Locate the Active Directory node in the directory tree. Expand it to reveal Local Deleted Objects. The Server object is also available.
    • To restore tombstone objects, expand Local Deleted Objects, navigate to the tombstone objects that you want to restore, and select the tombstone objects.
    • To restore Active Directory objects that are backed up to the IBM Spectrum Protect server:
      1. Expand the Server object. A window opens displaying a list of system state backups (with different time stamps) on the server.
      2. Select a system state backup from the list. The Active Directory database from that system state is restored in the background, and the tree is populated with Active Directory objects.
      3. Navigate to the Active Directory objects that you want to restore and select the Active Directory objects.
      Tip: To see the attributes for an Active Directory object, keep expanding each Active Directory object in the tree until you reach the one you want. The attributes for an object are displayed in the display area that is adjacent to the tree. You can search or filter the tree for an Active Directory object based on its name.
  4. Click Restore to begin the restore operation. The Task List window opens and shows the progress of the restore operation.

On the command line, use the query adobjects command to query and the restore adobjects command to restore individual Active Directory objects.

Related reference:
Query Adobjects
Restore Adobjects