Wednesday, November 28, 2012

Enabling the Active Directory Recycle Bin Feature on Windows 2008 R2



 Windows 2008 R2 introduces the Active Directory Recycle Bin Feature in addition to a number of other enhancements and features .

Before we begin, we need to ensure that we have met the minimum requirements allowing you to enable the Active Recycle Bin.  In summary, your Domain Forest Functional Level needs to be at least Windows 2008 R2.  More information can be found in the following TechNet article; http://technet.microsoft.com/tr-tr/library/dd379484(WS.10).aspx

Now that we have met those requirements, we need to run the following command on the AD Domain controller where the Schema Master Resides.  If you are not sure where the Schema Master role resides, follow the below TechNet article on How to view and transfer FSMO roles in Windows Server 2003.

On the Schema Master Domain Controller, run Start / Administrative Tools /  Active Directory Module for Windows PowerShell.

Type in the following command;

N.B replace yourdomain.com with your own Active Directory domain name

Enable-ADOptionalFeature –Identity ‘CN=Recycle Bin Feature,CN=Optional Features,CN=Directory Service,CN=Windows NT,CN=Services,CN=Configuration, DC=yourdomain,DC=com’ –Scope ForestOrConfigurationSet –Target ‘yourdomain.com’
By at 0 comments
Labels:

Some Command line tools for Active Directory Management in Windows Server 2008



Windows Server 2008 has included a number of command-line tools for managing Active Directory objects. These tools are installed when Active Directory role is added.

Dsadd
This utility is used to add objects to Active Directory. You can add users, groups, computer, contacts and OUs.

Dsmod
This utility is used to modify Active Directory objects. You can modify users, groups, computers, contacts and users. Domain controller properties and Active Directory partition can also be modified by using this command.

Dsmove
This command is used to move and rename Active Directory objects.

Dsrm
This command is used to remove Active Directory objects. You can also remove Active Directory container and its contents.

Dsquery
This utility is used to find objects in the Active Directory. You can also perform LDAP queries to find any object type and object attribute.

Dsget
This utility is used to view the properties of an object in Active Directory.
By at 0 comments
Labels:
Subscribe to: Posts (Atom)