Posted on February 5, 2014 · Posted in Active Directory

Restore deleted objects in Active Directory (Ldp.exe)

In this article we will clear out how to recover individual deleted objects in Active Directory with a help of Ldp.exe utility. This way of recovery can be used when Active Directory Recycle Bin function is disable for some reason or AD scheme is lower than Windows 2008 R2.

Run Ldp.exe utility

Select the Connect item in the Connection menu

ldp.exe active directory connection

Then select Bind (Ctrl+b) in the Connection menu

bind domain

Specify the name and password of a domain administrator and domain name.

It is neccessary to point out domain BaseDN in View - Tree (Ctrl+t) menu.

Tree view baseDN

Then open CN=Deleted Objects,DC=domain,DC=com node. Find a deleted object by name. Select it:

search deleted object with ldp.exe in Active Directory

Delete «isDeleted» attribute

delete attribute isDeleted

Then change DN (distinguishedName) (CN=new object name, OU = path) at the same window.

replace DN

Press Run.

Active Directory object is recovered!

Related Articles