Directory Services


The LDAP_SERVER_SHOW_DELETED_OID control is used with an extended LDAP search function to specify that the search results include any deleted objects that match the search filter.

To use this control, set the members of the LDAPControl structure as follows:

struct berval ldctl_value = {0, NULL};
BOOLEAN ldctl_iscritical;


LDAP_SERVER_SHOW_DELETED_OID, which is defined as "1.2.840.113556.1.4.417".
No data for this control. In the berval structure, set bv_len to zero and bv_val to NULL.
Can be TRUE or FALSE depending on whether the referral limitation is critical to your application.


The Show Deleted control is used with the extended search functions, such as ldap_search_ext, to view deleted objects along with other objects that match the search filter. When an Active Directory object is deleted, a tombstone of the object is preserved in the tombstone container for a configurable period of time known as the garbage collection interval. To view tombstones using the LDAP functions, you must specify the Show Deleted control. After the garbage collection interval, a tombstone is permanently deleted and can no longer be viewed using this control or otherwise. The RDN (relative distinguished name) of a tombstone is an identifier constructed from the objectGUID of the deleted object. A tombstone has its isDeleted attribute set to TRUE and contains only a subset of the object's attributes (see the description of searchFlags in Characteristics of Attributes).


Client: Included in Windows XP and Windows 2000 Professional.
Server: Included in Windows Server 2003 and Windows 2000 Server.
Redistributable: Requires Active Directory Client Extension on Windows NT 4.0 SP6a and Windows 95/98/Me.
Header: Declared in Winldap.h.