How to recover Azure AD B2B accounts in Quest On Demand

Hello. My name is Ian Lindsay. I am a strategic systems consultant with Quest. In this video, I want to show you how we will use on-demand recovery to be able to recover B2B accounts that have accidentally been deleted from our Azure Active Directory. First, let's set up the scenario. My company utilizes a third party to help us close our books every quarter. We have certain applications that we need the third party to be able to access that we've created B2B accounts for them to utilize to help us in closing our books. One of our accounts accidentally got deleted and by the time the next quarter rolled around the account was already out of the recycle bin and we needed to recover it so they could continue to help us to close our books. So, let's start by looking at our Azure Active Directory. If I go over and switch to the guest users, you can see all of my users that are coming from the third party that is helping us close our books. Now, we have had a user named Hal who has left of the company. And one of our administrators was told to go ahead and delete his account so that he would no longer have access to any of the tools. So, the user went in and searched for and deleted Hal. Unfortunately, they accidentally deleted the wrong user. They deleted Hal, our third party user, not Hal, our local user. Unfortunately, we did not notice that they deleted the wrong user account until the next time came around to close our books. This screen here was what Hal would normally see when he connects into our portal. You can see a couple of the applications that he uses to help us close our books every quarter. If I refresh this now, we can see that he is not gaining access to the systems. If I come back in and try and reconnect up, he should have no access to our internal systems because his account has been deleted. So what we need to do is, we need to go in and actually recover his account so that he can help us close the books again. So what we're going to do is, we're going to use Recovery Manager for Azure AD to be able to go ahead in and restore. Now, I've already located the backup that contains Hal's account and I've unpacked it. So what I'm going to do is, I am going to refresh my differences report so that I can see the different accounts that we need to go ahead in and look at. So, here is the process running, where we're going in and starting to look at our difference report. Every task is made up of multiple events, so we'll go ahead in and look at these events. We can see that the task has started, we're looking at updating, comparing the backup to the actual Azure AD tenant to build out our differences. We can see that the difference view has been updated. Now, if I look at my task, I can see that my task is completed. And when I look at the differences report, I can see Hal Jordan, my external user, was deleted. Here is the before value in the backup. There's no after value, so I know that he's been deleted. I can go ahead in and select Hal at this point, and I will click on the Restore to go ahead and restore my B2B user. If we look at the task, we can monitor the process of the restoration from here. I can also go down, I can look at the individual events that are making up this particular restoration. So, here the restoration has started. We can see that Hal is now being restored. And if I come back and look at my task, I can see that the difference restore is finished. So now let's go back in and see what happens when Hal tries to access the portal again. Now he's able to get back in. And he's able to gain access to the applications that we had previously shared with him. So, if you would like some additional information about the Azure AD Recovery tool, you can go to this link: Quest.com/AzureADRecovery. Thank you. And thank you for viewing this video.