We have a user account that was deleted out of Active Directory. We didnt catch it until it had replicated through our domain. We have backups, but i really dont want to go through the process of doing an authoritative restore to pull back one user account (we actually bought Quests Recovery Manager but are still waiting for it to come in...)
As you can imagine, the user account was recreated, but now we are running into issues where emails are bouncing back and a slew of other problems. I was able to pull his string SID from a report of recently deleted users. I was able to convert his string SID into HEX using this site:
When i go into ADSI Edit to add this converted SID into the user accounts SIDHistory i get "Access is Denied". I read in a couple of forums that this is to be expected because of the potential security breaches that could occur, but i also found a link to a page on the MSDN site that outlined prerequisites that must be met before you could manually add the SID. Unfortunately that site has been moved or is no longer in the MSDN section. I am pretty sure that if i can reattach his old SID then all of his problems would be resolved (permissions, emails bouncing, etc). I dont know that i can use ADMT since i am not moving to another Domain, but i could be completely off on how that utility works. If any one could provide some insight on this issue i would greatly appreciate it.