Hey everyone! I accidentally deleted a few users from Active Directory, which also removed them from Entra. Since it's been less than 30 days, I managed to recover one user for some loose ends. They're showing up in Entra, but I need to add them to a specific security group in Active Directory, and they're not showing up there. I tried creating a new user with similar information, but that just led to a new GUID and SID. Is there any trick to get a restored user account from Entra to show up in AD as well? Thanks in advance!
3 Answers
You need to restore the deleted user in AD because that syncs to Entra. If the recycle bin isn’t enabled, then it’s a tough lesson learned.
What’s your identity source, is it AD or Entra? How’s your sync set up? Usually, AD is set as the identity source, syncing to Entra. If that’s the case, restoring the user in AD should also recover them in Entra. You might want to check if the AD Recycle Bin is enabled—if not, consider enabling it for future use!
We sync AD to Entra, but I hoped it would work in both directions and it doesn’t.
Make sure the AD recycle bin is enabled! It's crucial for recovering deleted objects.
I’ll check on that.
Glad to hear it! That was the issue—AD recycle bin wasn’t enabled.
Exactly, I recently took over this setup and updated a lot, but I hadn’t checked the AD recycle bin until now. It’s active now, which is great for future situations, but not for this one!