Viewing Deleted Active Directory Objects Using LDP

I am sure this information exists elsewhere, but it falls into that category of something I do just often enough to forget how to do it.  So, if you find yourself needing to see which objects have been recently deleted from a domain, you can follow these steps to do it.

  1. Open LDP
  2. Select Controls from the Options menu
  3. Under Load Predefinied dropdown, select Return Deleted Objects.
  4. Choose the Check Out buton to load Obj Identifier 1.2.840.113556.1.4.417
  5. Choose Check In without modification
  6. Click Ok
  7. From the View menu, choose Tree
  8. Enter cn=deleted objects,dc=domain,dc=com into the BaseDN combo box
  9. Browse away at all objects that have been deleted.