August 2019
Intermediate to advanced
786 pages
20h 22m
English
Content preview from Mastering Active Directory - Second Edition
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
Start your free trial
Lingering objects
Let's assume a domain controller has been disconnected from the AD environment and stayed offline for more than the value specified as the tombstone lifetime attribute. Then, it was reconnected to the replication topology again. The objects that were deleted from AD during the time it was offline will remain as lingering objects in it.
When the object was deleted using one domain controller, it was replicated to other domain controllers as a tombstone object. It contains a few attribute values but it cannot be used for active operations. It remains in the domain controllers until it reaches the time specified by the tombstone lifetime value. Then, the tombstone object will be permanently deleted from the directory. The tombstone ...