locked
Restore Deleted computer account from Active Directory RRS feed

  • Question

  • We have Ad on windows server 2008 R2 and clients have WIn7 OS. Recycle bin was not enable, now i have enabled it on AD.

    One of our engineer deleted computer Hostname from AD while replacing the HDD on the system. Rejoined the system to domain with same hostname and encrypted HDD with Bitlocker.

    Now we want to restore the Bitlocker of the deleted system to access the old HDD. Can anyone help me to restore the bitlocker. please suggest me the commands to be used or process to recover the Bitlocker

    Sunday, April 17, 2016 7:46 AM

Answers

  • Hi,

    To achieve your goal, you could try to follow these actions are descripted on the article below.

    BitLocker Drive Encryption Operations Guide: Recovering Encrypted Volumes with AD DS

    https://technet.microsoft.com/en-us/library/cc771778(v=ws.10).aspx

    Best Regards,

    Jay


    Please remember to mark the replies as answers if they help and un-mark them if they provide no help. If you have feedback for TechNet Subscriber Support, contact tnmff@microsoft.com.

    • Proposed as answer by Jay Gu Friday, May 6, 2016 5:58 AM
    • Marked as answer by Jay Gu Sunday, May 8, 2016 2:32 AM
    Tuesday, April 19, 2016 11:48 AM
  • We have AD backup on our Domain controller, restored the bitlocker key using the AD Backup and Authoritative restoration.
    Tuesday, August 16, 2016 6:47 AM

All replies

  • If you have enabled AD recycle Bin before removing the account then you can restore the account as mentioned here: https://technet.microsoft.com/en-us/library/dd379509%28v=ws.10%29.aspx?f=255&MSPPError=-2147217396

    Otherwise, you can use adrestore but it will restore few attributes.


    This posting is provided AS IS with no warranties or guarantees , and confers no rights.

    Ahmed MALEK

    My Website Link

    My Linkedin Profile

    My MVP Profile

    Sunday, April 17, 2016 11:00 PM
  • Thanks for looking on this, i tried ADrestore utility but unable to see the system Hostname in it.
    Monday, April 18, 2016 5:15 AM
  • if you are unable to restore using ADrestore tool, you can checkout this another software if it helps you to restore deleted object back into previous format.
    Monday, April 18, 2016 9:06 AM
  • Mamatha, may I assume that you are still able to boot the machine?

    If yes, simply backup the recovery key once more to AD.

    Monday, April 18, 2016 1:50 PM
  • Hi,

    To achieve your goal, you could try to follow these actions are descripted on the article below.

    BitLocker Drive Encryption Operations Guide: Recovering Encrypted Volumes with AD DS

    https://technet.microsoft.com/en-us/library/cc771778(v=ws.10).aspx

    Best Regards,

    Jay


    Please remember to mark the replies as answers if they help and un-mark them if they provide no help. If you have feedback for TechNet Subscriber Support, contact tnmff@microsoft.com.

    • Proposed as answer by Jay Gu Friday, May 6, 2016 5:58 AM
    • Marked as answer by Jay Gu Sunday, May 8, 2016 2:32 AM
    Tuesday, April 19, 2016 11:48 AM
  • This is no answer. The AD object is deleted, so how should it apply?
    Monday, May 9, 2016 9:17 AM
  • We have AD backup on our Domain controller, restored the bitlocker key using the AD Backup and Authoritative restoration.
    Tuesday, August 16, 2016 6:47 AM