I have not heard of anything like that directly from Microsoft. Been asking those same questions, but perhaps too quietly.
I can tell you that one reason you won't see the same functionality as Exchange is that you're dealing with different technology underneath. What I mean by that is that you're just wiping out attributes and links based on that for an Exchange user, but the datastore (the users mail data) is still intact. You basically just lose reference to it. AD is the store where those references live. Up-level from Exchange if you will. So if you lose those references, you really have nothing. In order to make something useful for recovery, you'd have to maintain that information somewhere and keep it in relation to the original object. That said, there are third-party apps that can provide this type of functionality for you. That may be enough for many. Just seems it's about time that this functionality gets introduced natively. My $0.02 Al -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Shawn Hayes Sent: Friday, December 03, 2004 2:02 PM To: [EMAIL PROTECTED] Subject: [ActiveDir] Restore AD Why is it that MS hasn't added a deleted Security Principal retention for AD much like Exchange Server's deleted mailbox retention? Wouldn't that greatly simply recovering from small mishaps? I am not talking about the tombstone feature with Windows 2003 AD where you still have to manually recover Group Membership when recovering an account, but something actually intelligent and useful that would restore Group Membership when restoring accounts. Shit, recover a Group from Deleted Security Principal retention and have it add the back links to the memberof attribute of the users that were members of the Group before the Group was deleted. Recover an OU and it restores Security Principals and Members and Memberof attributes of all Security Principals within the OU. Anybody heard of something like this coming down the pike? Shawn Hayes MCSE (2003, 2000, NT) Messaging Systems Engineer City of Virginia Beach (757) 219-2057 List info : http://www.activedir.org/mail_list.htm List FAQ : http://www.activedir.org/list_faq.htm List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/
