Any pointers please ?
I need to explore the best means to backup IaaS Active Directory Machine State so that we can ensure restorability and encryption of the backup data.
- Domain database is backed up
- Database is restore-able from backup via "Administrative Restore"
- Backup data is stored securely - preferable encrypted
- Backup data is replicated to alternate region
Current state: Current backup means using simple Windows Server Backup State Data to attached drive. A DR from this drive would be near impossible due to its encrypted state however it does likely suffice for AD restores for accidental corruption