Learn how to a build a cloud-first strategyRegister Now

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 2355
  • Last Modified:

Remove Corrupted User in Active Directory / email address & mailbox in Exchange 2003

Okay...  This mess all starts with me trying to send email to one of my users on my Exchange 2003 server.   I couldn't send him email for whatever reason.   So I thought the simplest solution would be to delete the user entirely, and recreate him.   So I went into Active Directory Users and Computers and deleted him.  And it said "deleted".

I then tried to recreate the user again.   And when I try to reuse the same username, I get this error message:
"The user logon name you have chosen is already in use in this enterprise.  Choose another logon name, and then try again."

This doesn't make sense, because I'm looking in the exact same spot, and the user clearly isn't there.   I wait 24 hours for any replication changes to be made (even though I only have a single controller in this domain, and another controller in another domain in the same forest).   Then I try again, and it still doesn't work.

I do a search for the user, using the Action-> Find feature in ADUC.   When I search in the domain, the user never shows up.    However, when I search in "Entire Directory", the user appears.   I try to delete the user from the search results and I get the following error:
"Windows cannot delete object <username> because: Directory Object Not Found"

So I try to do this the manual way, and go to LDP.exe.   But when I try to browse down in Tree mode, I still don't see the user account at all.

This really makes no sense.   So I figure, I just need to receive mail on the same email address right?   I REALLY need to get this user purged from the directory.   So I create a different account with a different username, and it works.   But then I try to assign it the same email address, and I get this error:
"This email address already exists in this organization.
ID no: c10312e7
Microsoft Active Directory - Exchange Extension"

So then, I try to go to the Exchange System Manager, and I navigate down to the information store, and then to the mailboxes, and the original mailbox is still there.    But when I try to right click on it, both "Reconnect" and "Purge" are greyed out.   And when I try to click on "Exchange Tasks", it gives me this error:
"The server is not operational.
Facility: Win32
ID no: 8007203a
Microsoft Active Directory - Exchange Extension"

So now, this is really driving me nuts.    I really need to be able to use this email address again.  There are a lot of important things tied to this email address.   I don't really need to recreate the exact same user account, but I can't use the email address again without purging out the old one.    

Please help.
0
Justin Goo
Asked:
Justin Goo
  • 4
  • 3
1 Solution
 
MrLonandBCommented:
Run the Mailbox Cleanup Agent on that Mailbox Store that the user is in. His box should show then with a red "x" on it. Then you can purge it.
0
 
MrLonandBCommented:
Oh...if unfamiliar with the cleanup agent, right-click on "mailboxes" and choose: Run Cleanup Agent.
0
 
Justin GooAuthor Commented:
I have run the mailbox cleanup agent.   But the mailbox never gets red X'd.   And I am still unable to assign the email address to a different mailbox.  
0
Concerto's Cloud Advisory Services

Want to avoid the missteps to gaining all the benefits of the cloud? Learn more about the different assessment options from our Cloud Advisory team.

 
MrLonandBCommented:
Now that you've run the cleanup agent...are you still unable to reconnect or purge?

When you do the "find" for Entire Directory and the user appears, are you able to go to the properties of that user and open the "object" tab? If so, find the path given there and use ADSIEdit to drill-down to the location of that object and delete it.
0
 
Justin GooAuthor Commented:
No.  Still unable to do reconnect or purge.  And no, I am unable to open up the properties for the object I find.   I get the error message I described above.
0
 
MrLonandBCommented:
Using ADSIEdit, can you perform a query on the email address and get a user returned to you?

Using ADSIEdit, right-click the domain and the top of the tree, select new > query. Give the query a name and choose the "Edit Query" button. From the "Field" drop-down box, choose "User" and then "Email Address". In the "Condition" box, drop-down and choose "Is Exactly" and then type-in the exact email address in the "Value" box. Then hit the "OK" buttons and the query should show at the bottom of your domain tree in ADSI.

If you are familiar with searches using ADSI, then I apologize for the tutorial. Some folks aren't familiar with it so I provided them in that case.
0
 
Justin GooAuthor Commented:
Nope.  Can't find it.
0

Featured Post

Problems using Powershell and Active Directory?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

  • 4
  • 3
Tackle projects and never again get stuck behind a technical roadblock.
Join Now