Garbage Collection in Active Directory

Home » Articles

	Search

	Technologies
	ASP.Net C# IIS ASP.Net AJAX .NetFramework Webservices ADO Sql Server Reporting Services Directory Services Windows Clustering Javascript Sharepoint Services ASP.Net MVC jQuery

	CodeDigest Navigation
	Home Register Login Advertise Contact Us

	Technology News
	No News Feeds available at this time.

	Community News
	No News Feeds available at this time.

Garbage Collection in Active Directory

By Nirmal Sharma
Posted On Mar 29,2008

Article Rating:


Be first to rate this article.

No of Comments: 2

Category: Directive Service


Print this article.

Garbage Collection in Active Directory

This article gives users a short explanation on Garbage Collection Process used by Windows Active Directory.

This article explains about the garbage collection process used by Active Directory to clear out orphaned objects from Active Directory Database file (ntds.dit).

Windows 2000/2003 Servers delete all tombstone objects after 60 days after their original status. Active Directory sets isDeleted attribute to TRUE after the 60 days automatically or when you delete an object manually. This is because a tombstone object should be replicated to all domain controllers in the domain (The domain partition). Otherwise objects will be re-created in Active Directory.

You can also change the default time.

If you want to change the default time you can modify the tombstonelifetime setting under cd=DirectoryServices,cn=WindowsNT,cn=Services,cn=Configuration,dc=DomainName parameter which Microsoft does not recommend.

Each directory partition holds a container called Deleted Object except Schema partition because you can not delete objects from this partition. After deleting an object or setting isDeleted attribute to TRUE Active Directory moves these records to Deleted Object container in the partition that contained the object.

Active Directory hides these Deleted Objects containers by default, so to view them you must enable the Return Deleted ObjectsLightweight Directory Access Protocol (LDAP) control as part of a search operation.

You can search Tombstone objects using LDP found in Windows 2000 and Windows 2003.

Please note, a 2003 Forest created with SP1 will have 180 days as a tombstone life time.

Latest Articles

5 Tips on How to Use Twitter Effectively for Your IT Career

How to Choose a Real World Network Security

Is It Easy to Learn Java if You Already Know JavaScript?

New to ASP.NET? Here’s the Simplest Code You Can Execute

Top 5 programming languages commonly used by online gaming developers

Streaming Media Contents and VPNs

Latest QuickStart Guides

What is Web Accessibility Guidelines & Section 508 Compliance? Build Screen Reader Friendly WebSites

What is Dapper? How to Use Dapper in Asp.Net MVC?

What is REST Services? How to Create REST Services in Asp.Net?

What is OWASP? What are OWASP Top 10 Security Risks?

Using Gulp (gulpfile.js) in Visual Studio 2017

What is Gulp? How to Use Gulp?

You can contribute to CodeDiget.Com:

Article Feedback

Comments

Hummm

hummm.. I'm SystmProg - owner of the blog you posted.

thanks!
Nirmal

Commented By Nirmal on 1/6/2010 @ 10:00 PM

Copy Cat

Seems to be copied word by word from

http://msmvps.com/blogs/systmprog/archive/2006/11/02/Inside-Garbage-collection-process-of-Active-Directory.aspx

Commented By Rajesh Mathew on 4/9/2009 @ 3:09 AM

www.codedigest.com. All articles are posted "AS IS" with no warranties. All articles are posted for educational purpose only and individual authors are responsible for their article. Please mail satheeshbabu.b{at}gmail.com for any queries or compliants.
Disclaimer Terms and Condition Privacy Policy Contact Us Our network websites: ChennaiOnNet.Com