You want to delete an OU and all objects in it.
Open the Active Directory Users and Computers snap-in.
If you need to change domains, right-click on “Active Directory Users and Computers” in the left pane, select Connect to Domain, enter the domain name, and click OK.
In the left pane, browse to the OU you want to delete, right-click on it, and select Delete.
If the OU contains child objects, you will be asked for confirmation again before deleting it. Click Yes.
To delete an OU and all objects contained within, use the
-subtree option with the
command. If you don’t use
-subtree and the object you are trying to delete
has child objects, the deletion will fail.
> dsrm "<
' This code deletes an OU and all child objects of the OU set objOU = GetObject("LDAP://<
Deleting OUs that do not contain objects is just like deleting any other type of object. Deleting an OU that contains objects requires a special type of delete operation. The “Tree Delete” LDAP control (OID: 1.2.840.113522.214.171.1245) must be used by the application or script to inform AD to delete everything contained in the OU. All three solutions in this case use the control “under the covers,” but if you were going to perform the operation via an LDAP, such as LDP, you would need to enable the control first.
Recipe 4.3 for using LDAP ...