Active Directory username dissapearance

Posted on 2008-11-12
Last Modified: 2012-05-05
I was not able to see one username in the AD.  I performed an AD replication and after that I lost 2 users in my AD.  I cannot find these users anywhere in the AD.  Replication was performed from same site, same domain, the only difference is the DC receiving the update is in different city.  I am running Windows 2003 Server in all 3 DC's.  Is there any way to recover these accounts?  I do not want to recreate them.
Question by:virtech
    LVL 6

    Expert Comment

    are these users still able to log in?
    LVL 23

    Expert Comment

    by:Malli Boppe
    can you check the users in LostAndFound folder in the AD.

    Author Comment

    They are not in the lost and found and gthey cannot login.
    LVL 6

    Expert Comment

    make sure you check on each DC - if something went wrong with replication they may be on one DC and not the others.

    If they cannot log in, it sounds like the user account has been wiped out..  and I don't think you can restore individual accounts from backup in AD.
    LVL 30

    Accepted Solution

    > "and I don't think you can restore individual accounts from backup in AD."

    Assuming you have a valid System State backup in place, this is 100% false. Simply reboot one of your DCs into Directory Services Restore Mode, perform a System Syste restore, and then mark the 2 objects as authoritative using ntdsutil before rebooting normally.

    If you don't have a valid System State backup, then these accounts cannot be easily restored - you can re-animate the tombstone objects, but all group memberships will need to be manually re-entered.

    Write Comment

    Please enter a first name

    Please enter a last name

    We will never share this with anyone.

    Featured Post

    Threat Intelligence Starter Resources

    Integrating threat intelligence can be challenging, and not all companies are ready. These resources can help you build awareness and prepare for defense.

    Throughout my career I’ve read many articles and performed due diligence on recovering VM’s that broke on the XenServer platform. From my experience and perspective it seems to be an ample amount of confusion as to a good base method to start with. …
    Finally comes the third version of VMware Virtual SAN, whose name is 6.1, and comes loaded with new features many of which really are excellent and even surprising.
    This tutorial will walk an individual through the process of configuring their Windows Server 2012 domain controller to synchronize its time with a trusted, external resource. Use Google, Bing, or other preferred search engine to locate trusted NTP …
    This tutorial will walk an individual through setting the global and backup job media overwrite and protection periods in Backup Exec 2012. Log onto the Backup Exec Central Administration Server. Examine the services. If all or most of them are stop…

    737 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    18 Experts available now in Live!

    Get 1:1 Help Now