The Deleted Item Retention lifetime, also known as the tombstone lifetime, in an Active Directory forest determines how long deleted objects are retained in Active Directory Domain Services (AD DS). The lifetime is determined by the value of the tombstoneLifetime attribute on the Directory Service object in the configuration directory partition. Because a current backup is required for recovering a domain controller in case of failure and for installing a domain controller from backup media, the Deleted Item Retention lifetime also defines the useful life of a backup that you use for disaster recovery or installation from backup media.

To determine or set the Deleted Item Retention lifetime for the forest, follow ...