Non-Authoritative vs Authoritative Restore in Active Directory
Restoring a Domain Controller has two flavours. They use the same backup, the same DSRM boot path, the same wbadmin command — but a single decision afterward changes the entire…
Welcome to the Dojo
Welcome to InfoTech Ninja
IT professional writing about cybersecurity, cloud & DevOps, automation, networking, and systems administration. Real-world guides for real-world problems.
Latest Articles
Bare Metal Restore: The Full Procedure
The disaster: someone deleted the entire VM. Or the OS volume corrupted. Or a ransomware event encrypted the host. The procedure now is to bare-metal restore from the backup we…
Bare Metal Backup Test on a VM (Prove the Backup Actually Restores)
An untested backup is not a backup. This post is the test. We’ll create a bare-metal backup of a disposable lab VM — not just system state, but the full…
Schedule Automatic Backup in Windows Server 2022
Manual backups are practice. Scheduled backups are what actually saves you when a DC dies at 3 AM. Part 1 covered the one-shot system state backup; this post automates the…
Backup the Active Directory Database (System State + wbadmin)
If you only ever do one Active Directory backup, it’s the system state backup. System state pulls everything AD needs to come back from scratch — the NTDS.DIT database, SYSVOL,…
repadmin /replsummary: Decode Your Active Directory Replication Health
repadmin /replsummary is the single most useful command for telling you whether AD replication is healthy. One terminal, one keystroke, two columns of numbers that immediately surface every DC that’s…
The Concept of Lingering Objects in Active Directory (Causes, Detection, Cleanup)
A lingering object is a deleted AD object that didn’t get the “you’re deleted” memo before the memo itself expired. It sits on a long-disconnected DC, pretending to still be…
How Active Directory Replication Conflicts Are Resolved (Version, Timestamp, GUID)
Multi-master replication doesn’t prevent conflicts — it tolerates them. Two admins on two DCs can simultaneously edit the same attribute, create the same object, or move and delete things at…