Which Objects Can Be Restored from the Recycle Bin?
On Demand Recovery can restore the following objects from the Recycle Bin:
- Users (all types of users including B2B, B2C, guests, hybrid)
- Microsoft 365 Groups
- Applications
- Service principals
- Administrative Units
|
|
Note: Links, permissions, and roles cannot be restored from the Recycle Bin. But if an object from the above list is soft deleted and then recovered from the Recycle Bin, all attributes and links including group membership and app role assignments are preserved by Microsoft. |
|
|
Note: Soft-deleted service principals can only be restored from the Objects view tab, under Unpacked Objects. |
Objects that cannot be restored from the Recycle Bin:
- Distribution groups
- Security groups
- Mail-enabled security groups
- All groups synchronized by Microsoft Entra Connect from on-premises Exchange server (hybrid configuration)
- Devices
Restoring Passwords
On Demand Recovery does not backup passwords. During the restore of permanently deleted users, the application sets a random password that can be changed by the administrator at the next login.
Restoring Directory Roles and Application Roles
Restoring Directory Roles and Application Roles
On Demand Recovery backs up and restores the assigned roles in Microsoft Entra ID.
Supported scenarios
The following scenarios are supported in On Demand Recovery:
- Restoring eligible/active assigned roles that are associated with applications integrated with Microsoft Entra ID. For more information, see Restoring Service Principal Objects.
- Restoring directory roles and their members including users and group members.
- Restoring role assignments for users, groups and service principals.
Limitations
The following roles are not restored by On Demand Recovery:
- Custom Microsoft Entra roles are not restored.
- Custom Microsoft 365 roles are not restored.
Restoring Users
Users that were accidentally deleted can be restored using On Demand Recovery. Users who have been moved to the Deleted users page (soft deleted) can be restored along with users who have been permanently deleted (hard deleted) from Microsoft Entra ID.
Supported scenarios
The following scenarios are supported by On Demand Recovery:
- Restoring a soft or hard deleted user as a group owner if they were previously an owner of a security group or Microsoft 365 group.
|
|
Note: Because of Microsoft requirements, hard deleted objects will receive a new Object ID upon restore of these objects. Please consider the implications of having a new Object ID after restoring these objects. |
Restored user attributes
For a list of user attributes restored by On Demand Recovery, visit the On Demand Recovery Supported Attributes guide.
