Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations SkipVought on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Deleted user group Urgent HELP needed

Status
Not open for further replies.
jakess

jakess

Technical User
Apr 17, 2000
418
0
0
ZA
I have have deleted a AD user group which has rights to a share which contain 15 folders with 140 GB of data. All those users have lost access now. I have created a new group and have applied the permission but its going to take a very long time to apply the permissions to all subfolders.
Is there any other way how i can recover the group and have the permissions back as it was without re applying the permissions.
 
Sort by date Sort by votes
Restart in AD restore mode [F8]
Restore system state - using backup
Do not reboot after restore
Start | Run | cmd
type ntdsutil.exe authoritive restore
authoritative restore: restore subtree "cn=Web Administrator,ou=ITG,dc=nwtraders,dc=msft"
Restart the computer into normal mode

In this example the group Web Administrator would be restored.

Replace with the details for your group and domain
 
Upvote 0 Downvote
And that will restore the group and the appropriate permissions on network shares as it was before?
My problem is i cannot take the servers offline during working hours so restore would have to take place after working hours.
Our GC and BC is also application/file servers.
I thought there was a online restore method.
 
Upvote 0 Downvote
try using ADRestore from SysInternals. Read the associated MS KB Introduction

Server 2003 introduces the ability to restore deleted ("tombstoned") objects. This simple command-line utility enumerates the deleted objects in a domain and gives you the option of restoring each one. Source code, which is included, is based on sample code in the Microsoft Platform SDK. This MS KB article describes the use of Adrestore:

840001: How to restore deleted user accounts and their group memberships in Active Directory

Hope this helps

 
Upvote 0 Downvote
If you have a system state backup and you can take the server down then use the Microsoft recommended method.
This should restore your group as it was.
 
Upvote 0 Downvote
>And that will restore the group and the appropriate permissions on network shares as it was before?

If you look at the security of the NTFS folder in question you should see what was the user group represented as a SID. If so then restoring the group as described above will restore users access to the folder.

s.
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

Abdullah Al Maruf
  • Locked
  • Question
Telnet help for
Replies
2
Views
101
gbaughma
gbaughma
DrB0b
  • Locked
  • Question
Windows 2016 IIS FTP server with a ton of user accounts
Replies
4
Views
140
DrB0b
DrB0b
penguinroundup
  • Locked
  • Question
programmatically delete all saved passwords for IE for any user
Replies
0
Views
50
penguinroundup
penguinroundup
on3mansh0w
  • Locked
  • Question
[HELP] AD GPO not applied unexpectedly
Replies
0
Views
64
on3mansh0w
on3mansh0w
Fireksf
  • Locked
  • Question
Avaya IPOCC not generate Report, Please any body if you a have any idea help me.
Replies
1
Views
61
MarkSweetland
MarkSweetland

Part and Inventory Search

Sponsor

Back
Top