What's up Chewy?

Posts Mentioning RSS Toggle Comment Threads | Keyboard Shortcuts

• 

  Chewy Chong 10:46 am on September 3, 2005 Permalink | Reply  

  Deleted AD Objects and a Tombstone Reanimation Tool 

  Deleting AD Objects and a Tombstone Reanimation Tool

   

  In my Active Directory Recovery Planning session, I talked about a free tool which will allow you to easily ‘undelete’ an object in Active Directory.  This process is called Tombstone reanimation and Quest makes a free tool that will allow you to do this without having to script something.

   

  Quest Object Restore for Active Directory (FREE)

  http://wm.quest.com/products/objectrestoread/

   

  Here are a couple of things to note:

   

  1. You need Windows 2003 Server to do this:  Only Windows 2003 exposes the APIs to allow you to officially do this.  All you need is one W2K3 DC in the environment.
  2. Not all object attributes are restored:  When you delete something in AD, the object is gutted of the majority of its attributes with only a few key identifying attributes left.  Therefore, when you undelete / reanimate a tomb-stoned objected, only these attributes will be restored.  

   

  If you do not have Windows 2003 or need all attributes to be restored, your only option is to restore from some sort of backup either through an authoritative restore or through a 3^rd party tool.

   

  More information about tombstones and reanimation (include which attributes are delete and which are kept in the tombstone):

   

  Everything you want to know about object deletion and reanimation in AD
  http://msdn.microsoft.com/library/default.asp?url=/library/en-us/ad/ad/creating_and_deleting_active_directory_objects.asp?frame=true

   

  Have fun.

   

   

   

  Reply Click here to cancel reply.

  Name (required)

  Email (required)

  Web Site

  Notify me of follow-up comments via email.

  Notify me of new posts via email.

   
• 

  Chewy Chong 4:57 pm on September 2, 2005 Permalink | Reply  

  TechEd 2005 – SVR 305 Session: How to Build a Self-Service Application Using Microsoft Identity Integration Server 2003 (Chewy Chong) 

   

  Self-service applications are valuable tools for any IT organisation to save on help desk costs. When building a self-service application, it is important to make sure that the application does not work for a specific environment only, but can span all heterogenous systems used in the IT organisation. MIIS provides the functionality to aggregate identity information from heterogenous identity stores and enforce the correctness. This makes MIIS a great operating system platform for building self-service applications with workflow. Learn how to build self-service applications today on MIIS 2003 and how future versions of MIIS will make it even easier to build to leverage the aggregate identity information in MIIS and configure workflow.

   

  Slide Deck (2.8MB) –
  http://firechewy.com/content/TechEd2005/SVR305-MIIS_Chewy_Chong_TechEd_Au_08-31-05.ppt

   

   

   
• 

  Chewy Chong 4:54 pm on September 2, 2005 Permalink | Reply  

  TechEd 2005 – SVR 302 Session: Active Directory Recovery Planning (Chewy Chong) 

  Have you ever thought how you would recover your Active Directory forest if it was to be affected by some unforeseen corruption caused by malicious or erroneous administrator actions? What is the quickest way to restore your CEO’s account if it is accidentally deleted? From the administrator who loses sleep thinking about these questions, to the administrator who takes AD recovery for granted, there is something to learn from this session. This session covers disaster recovery scenarios ranging from deleted AD objects to loss of a domain controller and even loss of an entire Active Directory forest. Lessons learned from the real world, customers and Microsoft Product Support are presented, as well as Microsoft’s latest recommendations for Active Directory disaster recovery planning.

   

  Slide Deck (4.5MB) –
  http://firechewy.com/content/TechEd2005/SVR302-AD_Chewy_Chong_TechEd_Au_08-31-05_web.ppt