Solved

Active directory

Posted on 2007-11-26
6
357 Views
Last Modified: 2010-04-21
Hi,

I got a call today saying that some users could not logon, i checked active directory and all users have dissappeared. can anybody help as nobody can log onto the network, with out recreating all users again and configuring emails etc

any help would be appriciated

ggntt
0
Comment
Question by:ggntt
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 2
6 Comments
 
LVL 30

Expert Comment

by:LauraEHunterMVP
ID: 20349847
Are you saying that you are able to open ADUC, but your user objects are no longer present?  Or are you receiving an error when you try to open ADUC.  If the latter and some or all of your user objects were deleted, you will need to perform an authoritative restore, as described here:

http://technet2.microsoft.com/WindowsServer/en/library/690730c7-83ce-4475-b9b4-46f76c9c7c901033.mspx

0
 
LVL 11

Accepted Solution

by:
bsharath earned 500 total points
ID: 20349896
You can use these tools to restore.
Quest Object Restore for Active Directory
or
Adrestore
0
 

Author Comment

by:ggntt
ID: 20351302
Hi there,

We recreated a few of the users and attached thier mailboxes again.
Later the same thing happened, the users disappeared from AD
Tried adrestore but that just launced what looked like a batch file then closed, nothing happend.
Anyone any ideas ?

Thanks
0
Online Training Solution

Drastically shorten your training time with WalkMe's advanced online training solution that Guides your trainees to action. Forget about retraining and skyrocket knowledge retention rates.

 
LVL 30

Expert Comment

by:LauraEHunterMVP
ID: 20351325
If you have not enabled auditing on your domain controllers, now would be a good time to do so.  It is unclear from your description whether the accounts are being deleted or if there is something else at work.  You should also install the Windows Support Tools on each DC (from the Windows Server media) and run dcdiag.exe from the command prompt.
0
 

Author Closing Comment

by:ggntt
ID: 31410969
Not sure why the user objects disappeared.
We ran Quest Object Restore (simple to use, excellent product) and we managed to get them back.
Had to reconnect to their mailboxes after we did that.
All looks fine now.
Anyone know why this might have happened?  We are very concerned that the problem might return.
(We think its associated with Tombstone but not sure)

Any feedback appreciated.

Thanks
ggntt
0
 

Author Comment

by:ggntt
ID: 20351976
Just to let you know that we ran quest object restore (simple and very effective)
it restored the users in ad.
We had to reconnect their mailboxes via exchange sys manager.
All looks fine now.
Really concerned as to why this happened and concerned that it will happen again.
Anyone ever see this before ?
We feel it could be associated with tombstone but not sure, any feedback welcomed

Thanks
ggntt
0

Featured Post

Microsoft Certification Exam 74-409

Veeam® is happy to provide the Microsoft community with a study guide prepared by MVP and MCT, Orin Thomas. This guide will take you through each of the exam objectives, helping you to prepare for and pass the examination.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

A company’s centralized system that manages user data, security, and distributed resources is often a focus of criminal attention. Active Directory (AD) is no exception. In truth, it’s even more likely to be targeted due to the number of companies …
Had a business requirement to store the mobile number in an environmental variable. This is just a quick article on how this was done.
Microsoft Active Directory, the widely used IT infrastructure, is known for its high risk of credential theft. The best way to test your Active Directory’s vulnerabilities to pass-the-ticket, pass-the-hash, privilege escalation, and malware attacks …
Attackers love to prey on accounts that have privileges. Reducing privileged accounts and protecting privileged accounts therefore is paramount. Users, groups, and service accounts need to be protected to help protect the entire Active Directory …

615 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question