This is technically called IFM (Install from Media), this is useful in case we have a domain and we want to expand it with more domain controllers and we do not want the Active Directory to copy us over the network to the new domain controller, For example, if what we are doing is a domain controller in a delegation that its Internet bandwidth to where the primary domain controller is is quite loose, copying the Active Directory database may take a couple of hours or more copying it. This is used for this purpose:, the system state of the primary domain controller is backed up and restored to the one we want to be an additional domain controller in a directory, and when joining it to the domain we use this restored data instead of replicating the AD.

First, we open the NTBACKUP on the primary domain controller and back it up anywhere, in my case in C:SystemStatus.bkf and we only have to check the “System State” or “System Status”, We start the copy from “Initiate”,

“Initiate”,

… we wait while the file is generated…

Ok, perfect, we see that it occupies almost 500Mb, copy this to a CD/device and send it to the one we want to be the additional domain controller.

GOOD, now on the new server, the one we want to be an additional domain controller, we must open the Backup program (o NTBACKUP) and restore said file in some directory by checking “Restore files to:” and select “Alternate Location”, for example in C:System Status, Started.

I agree, Accept.

“Accept”,

… and wait while this copy is restored…

GOOD, We close the restoration assistant.

Now, the important thing is that you don't have to do the DCPROMO in a normal way, otherwise, adding the ADV parameter, in “Beginning” > “Execute”, Write: DCPROMO /ADV and accept.

Now we will follow the wizard as usual to join the domain… “Following”,

“Following”,

Mark “Additional domain controller for an existing domain” & “Following”,

And we scored “From these restored backup files”, and we put the directory where we will have restored the system state of the other domain controller, in my case it was C:System Status, “Following”,

If we want you to accept the logins of the PCs in your environment to validate your credentials, we will make a global catalog for you., It's the most normal if you're the only domain controller for a remote office, “Yes” & “Following”,

And we continue with the assistant as usual…

The DB where you will save it from the AD, The Records…

The sysvol…

The password to recover it…

We see our selected options and we see that it will take the data from our directory…

… We wait while it unites us… and we see how he tells us that he has restored from this copy…

Ok, “End”,

In the event viewer we will see that the Active Directory has indeed been restored from a backup media… we would already have our additional domain controller without having to throw a VPN or a low-bandwidth connection at low.

www.bujarra.com – Héctor Herrero – Nh*****@bu*****.cOm – v 1.0