Hi,
Just checking in to see if the information provided was helpful. Please let us know if you would like further assistance.
Best Regards,
Vicky
Trusts - TDO Object
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(259.20000000000005, 11%, 35%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EC%3C/text%3E%3C/svg%3E)
Chrisagardner63
1
Reputation point
When creating a Active Directory Trust - I have the TDO object in the Systems container.
I am getting some pushback back from our Risk Management team on the objects in the Users container. I believe these are only used when creating the Trust and when the TDO is created, and validated and can be deleted.
Are the objects in the Users Container still needed? The reasoning is that these accounts have the Password Not Expired attribute not set. I cannot find any MS documentation if these User objects can be deleted since the TDO is active in the Systems container.
Any help is appreciated.
Windows for business | Windows Client for IT Pros | Directory services | Active Directory
3 answers
Sort by: Most helpful
-
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(281.6, 28.999999999999996%, 37%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EVW%3C/text%3E%3C/svg%3E)
Vicky Wang 2,741 Reputation points2020-10-12T08:26:43.373+00:00 -
Vicky Wang 2,741 Reputation points
2020-10-01T08:58:01.67+00:00 >>Are the objects in the Users Container still needed?
According to my knowledge, does not affect deletion and change
Hope this information can help you
Best wishes
Vicky -
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(281.6, 80%, 37%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ETB%3C/text%3E%3C/svg%3E)
Thameur-BOURBITA 36,531 Reputation points Moderator2020-09-30T18:46:15.03+00:00 Hi,
If the account has been used to create the trust , you can delete or modify it it if the trust is already created with no impact on trust and TDO object.
Please don't forget to mark this reply as answer if it help you to fix your issue