Deleting AD user doesn't remove user folders
-
Using Server 2008R2, I have always created users in AD, then created their RDC desktop and set them up the way we needed.
I have always deleted the user by going to AD and right click and delete user. However the users folder is still listed under the users name in Windows User folder.
What is the best way to delete these folders. I presumed they would disappear when the user was deleted in AD.
-
Delete them manually. You would not want them to delete automatically, because you may need to recover their data.
-
AD is just the directory and authentication. It has no control over the file system.
-
I'm sure this could be scripted with PowerShell.
-
@IRJ Good point, which is why I always disable when they say delete and set a reminder to delete a week later.
-
@scottalanmiller OK, I will be able to remember that...explains a few other things.
-
So how do you Mladdies and Mlassies handle the deleted users files. Leave them, delete them right away or later? Do you do it via script, powershell or manually?
-
I leave the old profiles out there for a while. Once in a while (maybe a couple times a year, or if I'm running low on space, I'll go through and purge out profiles (or in a litigation-heavy enviornment archive them).
-
It depends who they are - if they are a shift worker, I delete them right away I can always recover from backup for the next few months. If they are a supervisor or in Administration, I normally move them into someone else's directly so they can get the files that are needed.
-
@alexntg Basically you go to Users and right click username and delete?
-
@technobabble said:
@alexntg Basically you go to Users and right click username and delete?
I disable the account for 30 days (some users in some environments have odd applications that have user-specific data or settings), then delete them after that. What I do is make an OU called Delete after (date), then just toast the OU when it's time during my monthly AD maintenance/cleanup cycle.
I did forget to mention earlier, if it's a local user profile and the termination is on the ugly side, I"ll just pull the hard drive and stick it on a shelf for litigation/forensic needs. At the same time, I'd zip up a copy of their RDS user profile and toss it on a NAS or other storage. Yes, I've had some doozies along the way: http://www.newstimes.com/policereports/article/Police-Woman-stole-from-Bethel-company-2740404.php
-
Great information everyone, thanks!
