Ever find yourself in the situation where you need to restore an accidentally deleted user account but your backup software only allows for entire system state restores? I did today and I found out about a really nice freebie tool to retrieve tomb stoned AD objects. It’s called “Object Restore for Active Directory” by Quest Software: http://www.quest.com/object-restore-for-active-directory/
For future instances since our active directory is running at the Windows Server 2008 R2 functional level, I plan on activating the recycle bin feature of AD. Directions are as follows:
- Click Start, click Administrative Tools, right-click Active Directory Module for Windows PowerShell, and then click Run as administrator.
Enable-ADOptionalFeature –Identity ‘CN=Recycle Bin Feature,CN=Optional Features,CN=Directory Service,CN=Windows NT,CN=Services,CN=Configuration,DC=mydomain,DC=internal’ –Scope ForestOrConfigurationSet –Target ‘mydomain.internal’