We help IT Professionals succeed at work.


tbonehwd asked
Last Modified: 2012-05-07
I've lost my user's on my domain.  I have a backup how can I restore.
Watch Question

This is very vague.

Are you using a Microsoft Active Directory? If so, have you logged into the AD to see if the user accounts are still there?

Also... when you attempt to use a domain username to log into something, what error do you get? If it's saying the account is locked, you may have a virus on your AD server.

*** Hopeleonie ***IT Manager
Unlock this solution and get a sample of our free trial.
(No credit card required)


We are using AD server 2003 and I have a backup of the system state. Will this restore my users and system accounts?
Unlock this solution and get a sample of our free trial.
(No credit card required)


Thanks for this.  I wound up calling microsoft.  I restored the system state from a backup after I booted into recovery safe mode.  We ran NTDSUTIL  I demoted my 2nd dc down to a server right after I lost the user accounts so there was only one DC to restore.  We did the following:

2. Authoritative (Rare): Restoring "Authoritatively" will require the use of the Microsoft utility, "Ntdsutil.exe." Visit the Microsoft Knowledge Base for details on how to run Ntdsutil.exe. This option should only be used when all DCs need to be restored back to a certain time. The Ntdsutil is needed to change the type of restore to Authoritative. In general, the Ntdsutil will add a value (10,000 is default) to all USNs to ensure they will be higher than any other current DCs. Once the restore is done and the Ntdsutil utility is run, replication will occur and the entire active directory will be pushed to the other DCs upon reboot. This effectively overwrites any changes made from the time of backup to the current time. An example of this can be seen in TechNote 236363.

I also did this:

How to restore deleted user accounts and their group memberships in Active Directory http://support.microsoft.com/kb/840001
How to perform an authoritative restore to a domain controller in Windows 2000 http://support.microsoft.com/kb/241594
How to remove data in Active Directory after an unsuccessful domain controller demotion http://support.microsoft.com/kb/216498
Using the BurFlags registry key to reinitialize File Replication Service replica sets http://support.microsoft.com/kb/290762
How To Use Netdom.exe to Reset Machine Account Passwords of a Windows 2000 Domain Controller http://support.microsoft.com/kb/260575
How to use Netdom.exe to reset machine account passwords of a Windows Server 2003 domain controller http://support.microsoft.com/kb/325850

I'm happy to say that I got it all back with the Help Of Microsoft Tech Support - it was well worth the $260.00l


i actually called Microsoft and wrote the solution
Unlock the solution to this question.
Thanks for using Experts Exchange.

Please provide your email to receive a sample view!

*This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.


Please enter a first name

Please enter a last name

8+ characters (letters, numbers, and a symbol)

By clicking, you agree to the Terms of Use and Privacy Policy.