question

ajaykrishna-8251 avatar image
0 Votes"
ajaykrishna-8251 asked JaiVerma-7010 answered

User Deletion Changes UPN

Hi,

If a User is Deleted , that user will fall under the Deleted User Catagory , The Thing is when I view the Deleted Users found that the ObjectID is prefixed with UPN. Is there any particular reason for that. A better Explaination will be Appreciatable.

azure-ad-user-management
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

1 Answer

JaiVerma-7010 avatar image
0 Votes"
JaiVerma-7010 answered

Hello,

Are you referring to the AD object RDN change to \0ADEL:<ObjectGUID>?

\0A is null terminator character.
ObjectGUID is added because DeletedObject is single container( you can imagine like single OU). If I delete two object with same RDN but located in different OUs, once both will move to single OU and cause conflict. To maintain the uniqueness of RDN, original ObjectGUID is added.

For example, we have two Objects

CN=jai1,OU=test1,DC=contoso,DC=local
CN=jai1,OU=test2,DC=contoso,DC=local

Above objects have same RDN but in different LDAP path so, can co-exits. But when I delete both the objects, both will move to single container, DeletedObjects and than there will be no unqiueness in the LDAP path

CN=jai1,CN=DeletedObjects,DC=contoso,DC=local
CN=jai1,CN=DeletedObjects,DC=contoso,DC=local

To avoid this conflict, Object GUIDs are added

CN=jai\0ADEL:efc1ca9e-a5ec-4a29-97e11,CN=DeletedObjects,DC=contoso,DC=local
CN=jai1\0ADEL:calcmw2,-bcd2e-3m87-12p12,CN=DeletedObjects,DC=contoso,DC=local

5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.