You need to identify the names of the users who were members of Group1 prior to its deletion

Your network contains an Active Directory domain named contoso.com. The domain contains a domain
controller named DC1 that runs Windows Server 2012 R2. DC1 is backed up daily.
The domain has the Active Directory Recycle Bin enabled.
During routine maintenance, you delete 500 inactive user accounts and 100 inactive groups. One of the
deleted groups is named Group1. Some of the deleted user accounts are members of some of the deleted
groups.
For documentation purposes, you must provide a list of the members of Group1 before the group was deleted.
You need to identify the names of the users who were members of Group1 prior to its deletion.
You want to achieve this goal by using the minimum amount of administrative effort.
What should you do first?

Your network contains an Active Directory domain named contoso.com. The domain contains a domain
controller named DC1 that runs Windows Server 2012 R2. DC1 is backed up daily.
The domain has the Active Directory Recycle Bin enabled.
During routine maintenance, you delete 500 inactive user accounts and 100 inactive groups. One of the
deleted groups is named Group1. Some of the deleted user accounts are members of some of the deleted
groups.
For documentation purposes, you must provide a list of the members of Group1 before the group was deleted.
You need to identify the names of the users who were members of Group1 prior to its deletion.
You want to achieve this goal by using the minimum amount of administrative effort.
What should you do first?

A.
Mount the most recent Active Directory backup.

B.
Reactivate the tombstone of Group1.

C.
Perform an authoritative restore of Group1.

D.
Use the Recycle Bin to restore Group1.

Explanation:

The Active Directory Recycle Bin does not have the ability to track simple changes to objects.
If the object itself is not deleted, no element is moved to the Recycle Bin for possible recovery in the future. In
other words, there is no rollback capacity for changes to object properties, or, in other words, to the values of
these properties.

Show Hint

Leave a Reply 7

Your email address will not be published. Required fields are marked *

Niels

Niels

As it is only for recording the deleted objects and not to actually resstore them Answer A is correct. least amount of work.

Reply

Who

Who

Okay, I see this now. If the admin deleted the members of the group and then the group was deleted, the tombstone version of the group would not list the members anyway. So that would not be helpful and that’s why we would want to go to back up.

Reply

kurt

kurt

struggling to see why this isnt C. surely it is less work than A

Reply

kurt

kurt

my mistake. the answer is in fact C but the first step to C is actually A. so answer is A

Reply

aaron

aaron

restore is not needed because the group only needs to be recovered for documentation purposes.

Reply