I've been grinding away on this one for at least 3 hours and need to make some progress. So maybe someone else can help me out. I've been all over google, MSDN, and internet forums, etc. Can't quite assemble the query that I need. I'm a newbie, but have
some basic understanding.
We need a simple LDAP query that will return all the samaccountnames of the user objects residing in the deleted objects folder.
Sounds easy?
I am aware of the (isDeleted=TRUE) attribute, but am also aware of the deleted object control (1.2.840.113556.1.4.417) -- I just can't seem to put them all together into a functioning query. I realize from from reading that deleted objects are invisible to normal LDAP searches without this control. I've looked all over for the proper syntax of linking these up, but can't. I have found evidence that says this is possible with LDAP queries, not just through GUI tools. We NEED a query to accomplish our task. (check the Active Directory cookbook on Google books)
If anyone can toss together a query that would output the samaccount names of the user objects in the deleted objects folder, you'd be awesome.
We need a simple LDAP query that will return all the samaccountnames of the user objects residing in the deleted objects folder.
Sounds easy?
I am aware of the (isDeleted=TRUE) attribute, but am also aware of the deleted object control (1.2.840.113556.1.4.417) -- I just can't seem to put them all together into a functioning query. I realize from from reading that deleted objects are invisible to normal LDAP searches without this control. I've looked all over for the proper syntax of linking these up, but can't. I have found evidence that says this is possible with LDAP queries, not just through GUI tools. We NEED a query to accomplish our task. (check the Active Directory cookbook on Google books)
If anyone can toss together a query that would output the samaccount names of the user objects in the deleted objects folder, you'd be awesome.