Disaster Recovery

By using the Disaster Recovery feature you can restore your Entra ID environment in no time - also to another Entra ID tenant. Currently the disaster recovery process includes snapshot restore for the following resources:

  • Users
  • Groups
  • Applications
  • Conditional access policies
  • Devices

To start the recovery, sign in to the Backup portal and select Backup for Entra ID in the top-left corner of the page. Then select Disaster recovery in the the drop-down menu under your signed-in username.

disaster-recovery-menu.png

  • Next, select the snapshot date and time from the calendar. The directory objects will be restored to the chosen point in time.
  • To restore all resources included in the functionality, leave the boxes checked. To exclude specific resources from recovery, simply uncheck the corresponding boxes.
  • If you want to restore to another tenant:
    • First, add the target tenant where you want to restore the data. You can do this on the Settings page by selecting Target Tenants and clicking the + icon (Add Tenant).

    • Select Sign in with Microsoft 365 and enter or select the Global Admin account for the target tenant. Once added, the tenant will appear on the page and can be used as a restore destination.

    • On the Disaster Recovery page, click To another tenant. You will see the existing target tenant(s) in the drop-down menu. If multiple target tenants are added, select the one to which you want to restore the data.

    • The available domain names for the selected tenant will appear under the With Domain menu. Choose the desired domain. For example, if you're restoring users as part of disaster recovery and select nexeticbackup.onmicrosoft.com, the users will be restored with email addresses in the format ...@nexeticbackup.onmicrosoft.com.

  • Finally, click Start Recovery to initiate the recovery process.

entraid-disaster-recovery.png

 

You can track the status of the restore task in Task Manager. Once the task is complete, the restored objects will be visible in the customer's Entra ID tenant, along with all their associated relationships (e.g., group memberships and role assignments for users). If an object already exists in Entra ID, it will not be duplicated; instead, the existing object will be updated (including attributes and relationships) based on the selected snapshot date.

Did you know?

If the customer's Entra ID tenant has been compromised, you can enable Emergency mode for the customer' Backup portal, which will disable sign-in with Microsoft credentials. However, you can still access the backup environment using alternate user credentials. For more details, refer to our support article.

Was this article helpful?
0 out of 0 found this helpful

Articles in this section