Configuring Active Directory Recycle Bin in Windows Server 2012
Active Directory Recycle Bin feature is a Long-Awaited to recover accidentally deleted Active Directory objects without restoring Active Directory data from backups, restarting Active Directory Domain Service (AD DS), or rebooting domain controller from Microsoft, which was introduced in Windows Server 2008 R2. Active Directory objects are preserved in the recycle bin for an amount of time to match the tombstone lifetime of the forest. This is 180 days by default. But in practice it is less impressive because to enable this feature we have to use Windows PowerShell and the Ldp.exe LDAP utility, which is not common for all levels of Windows Administrators. Apart from this, it requires the forest level be at least Windows Server 2008 R2. Once we enable Active Directory Recycle Bin feature, we will not be able to disable it.
In Windows Server 2012, Microsoft updates some improvement in Active Directory Recycle Bin such as it is no longer required to use Windows PowerShell or Ldp.exe to enable the Active Directory Recycle Bin. It can simply access from Active Directory Administrative Center. Even these improvements, organizations will not still acceptable to enable this feature because once we enable Active Directory Recycle Bin feature; we will not be able to disable it on Windows Server 2012. I hope Microsoft will fix this issue in the near future.To Enable the Active Directory Recycle Bin: 1. Open Server Manager, on the Tools menu, click Active Directory Administrative Center. 2. In the navigation pane, click msserverpro(local). In the Tasks pane on right side, click Enable Recycle Bin. 3. In the Enable Recycle Bin Confirmation dialog box, click OK.
5. In the navigation pane, under msserverpro(local), select HR Department OU and make sure that all deleted objects are restored or we can go to Active Directory Users and Computers to make sure that all deleted objects are restored.
Summary:In Windows Server 2012,we can recover deleted objects easily through Active Directory Administrative Center. This simplified the recovery of Active Directory objects that were accidently deleted. I hope this helps.