Documentation Center
About the EntraID Restore Options
Table of Contents
Availability Per Object Type
The table below illustrates which of the Entra ID restore options are available for each object:
| Users | Groups | Roles | Policies | Devices | Admin Units | Apps | |
|---|---|---|---|---|---|---|---|
| With Object | √ | √ | √ | √ | √ | √ | √ |
| As New | √ | √ | √ | √ | √ | √ | √ |
| Block Sign-In | √ | ||||||
| With Members | √ | √ | |||||
| With Memberships | √ | √ | √ (Enterprise Applications Only) | ||||
| With Role Assignments | √ | √ | √ | √ | √ (Enterprise Applications Only) | ||
| With Assignments | √ | ||||||
| Policy State | √ | ||||||
| To Another Tenant | √ | √ | √ | √ | √ | √ | √ |
Notes:
- The "As New" option is not available when you select multiples (i.e., multiple users, groups, etc.).
- If you restore multiple objects and one of those object already exists in Entra ID, it will be overwritten. If it doesn't exist, a new object will be created with the same name that it was backed up with. For example, if you restore multiple groups and one of those groups already exists in Entra ID, that group will be overwritten. If the group doesn't exist, a new group will be created with the same name that it was backed up with.
- If an object had been deleted, the "With Object" and "As New" boxes are automatically checked because they are required to restore in place.
Restore Object Descriptions
With Object
Restores the object with its attributes, current Name and ID. If the object doesn't exist in Entra ID, it will be created. If the object already exists in Entra ID, the existing one will be overwritten. If you don't select With Object, you can still restore memberships and role assignments.
As New
Creates a new object with a new Object ID during the restoration process. You'll enter a name for the object that will be created. If you are restoring With Object but don't select As New, the restoration target is the existing object in Entra ID.
Block Sign-In
Restores a user as Disabled.
With Members
Restores the object with its members. For example, restores a group or Admin Unit with the members that belong to it.
With Memberships
Restores the object with its memberships. For example, restores the group in its group hierarchy (in the case of nested groups).
With Role Assignments
Restores the object with its role assignments. For example, restores the Custom Role to identities such as users, groups, or service principals.
With Assignments
Restores device Device Compliance Policy or Device Configuration assignments.
Policy State
Restores the Policy as Enabled, Disabled, or Enabled For Reporting But Not Enforced. "Disabled" is the default selection.
To Another Tenant
Restores the objects to another Entra ID Tenant. You'll select the appropriate Target Tenant from the dropdown dropdown menu, and the Domain for the selected Target Tenant. (See Create a Target Tenant to add to this list.)
Restore Option Examples
| If you want to . . . | Then check . . . |
|---|---|
| Restore missing group memberships and role assignments to already existing user(s), | The “With Memberships” and “With Role Assignments” boxes. |
| Restore a single user with a new name without memberships or assignments, | The “With object” and “As New” boxes. |
| Recreate a group in Entra ID with the existing group name and object ID, with all its attributes, in the correct group hierarchy, with members and role assignments, | The “With object,” “With members,” '"With memberships," and “With role assignments” boxes. |
| Restore missing group members, group hierarchy and admin role assignments for the already existing group, | The “With members,” '"With memberships," and “With role assignments” boxes. |