1. Start Ldp.exe, and then click Connect on the Connection menu. Type the server name of a domain controller in the enterprise, verify that the Port setting is set to 389, click to clear the Connectionless check box, and then click OK.
2. On the Connection menu, click Bind. You can either bind using the currently logged on user or enter credentials. After clicking OK, you will see the bind information in the status window, it should show that you binded with the correct credentials.
3. On the View menu, click Tree. Type the distinguished name (DN) of the domain in the Base DN box. For example:
dc=<mydomain>,dc=<com>
replacing <mydomain> and <com> with the appropriate domain name.
This generates a tree view in the left pane beginning with the DN you typed. Double-click the root node of the tree view and in the right pane, locate the data associated with the "wellKnownObjects" attribute. Look for the line associated with the "Deleted Objects" data. For example, this may look like:
B:32:18E2EA80684F11D2B9AA00C04F79F805:CN=Deleted Objects,DC=YOURDOMAIN,DC=COM
4. Copy all the data following the second colon but before the third colon. For example: 18E2EA80684F11D2B9AA00C04F79F805
5. On the Browse menu, click Search. In the Base DN box, type:
<WKGUID=18E2EA80684F11D2B9AA00C04F79F805,DC=YOURDOMAIN,DC=COM>
replacing "18E2EA80684F11D2B9AA00C04F79F805" with the value you copied in the previous step.
NOTE: The starting and ending "<" and ">" characters are very important.
6. In the Filter box, type:
(objectClass=*)
7. OPTIONAL: If you want to see all attributes for the deleted objects, you can clear the existing attributes listed and just put in a * (which is a variable for all)
8. Click Options, and then click Controls. In the Object Identifier box, type:
1.2.840.113556.1.4.417 if you want to see deleted objects
1.2.840.113556.1.4.2064 if you want to see recycled objects
9. Clear the Value box, set the Control Type to Server, click to clear the Critical check box, and then click Check in >>. Click OK. (You can check in both above controls if you want to see both deleted and recycled objects). For more information on the difference between Deleted and Recycled objects, see https://support.quest.com/SolutionDetail.aspx?id=SOL89040
10.. In the Search Call Type section of the dialog box, click Extended and check the state of the following check boxes:
Attributes Only - cleared
Chase referrals - cleared
Display Results - selected
Set "Size Limit:" to a sufficiently large value such that all the deleted objects in the directory can be returned by the query. LDP will return up to the number of objects specified in "Size Limit:", and if there are more objects that cannot be returned, it will log an error. The error returned in the right-hand pane is:
Error: Search: Size Limit Exceeded. <4>
If you experience this error, set the "Size Limit:" higher and execute the Search again.
If necessary, modify the timeout value from zero to 60000 milliseconds.
Click OK to close the Search Options dialog box, click Subtree in the Scope box, and then click Run.
© 2024 Quest Software Inc. ALL RIGHTS RESERVED. Feedback Terms of Use Privacy Cookie Preference Center