search

MutonUfoAI / pgina

pGina fork: Open Source Windows Authentication
http://mutonufoai.github.io/pgina
BSD 3-Clause "New" or "Revised" License
156 stars 39 forks source link

Profile not geeting deleted after logout (Windows 10) #132

Open Oskar1983 opened 5 years ago

Oskar1983 commented 5 years ago

We are using pgina in a lab environment with an ldap server. After a session is finished, the newly created accounts should be deleted on the clients. The login works fine, but after logout the accounts are not getting deleted although the option is set.

Anyone having a idea on that?

MutonUfoAI commented 5 years ago

http://mutonufoai.github.io/pgina/documentation/user.html#how_pgina_works http://mutonufoai.github.io/pgina/documentation/plugins/local_machine.html Remove account and profile after logout – When this is selected, the plugin will remove the account and its profile after logout. Its only applied to users created by pgina!

%ProgramFiles%\pGina.fork\log\pGina.Service.ServiceHost_log.txt

Oskar1983 commented 5 years ago

Well, it does not work.

Here is an extract of the log, maybe you can see something there:

2018-12-20 15:28:18,744 [5324|21|DEBUG] LocalMachine: Found username: testUser 2018-12-20 15:28:18,760 [5324|21|ERROR] LocalMachine: Failed to authenticate user: testUser 2018-12-20 15:28:18,760 [5324|21|WARN ] PluginDriver:73c9ec33-d965-4f47-85e8-72295baf6fbe: 12fa152d-a2e3-4c8d-9535-5dcd49dfcb6d Failed without a message 2018-12-20 15:28:18,760 [5324|21|INFO ] PluginDriver:73c9ec33-d965-4f47-85e8-72295baf6fbe: Successfully authenticated testUser 2018-12-20 15:28:18,760 [5324|21|DEBUG] PluginDriver:73c9ec33-d965-4f47-85e8-72295baf6fbe: Authorizing user testUser, 0 plugins available 2018-12-20 15:28:18,760 [5324|21|INFO ] PluginDriver:73c9ec33-d965-4f47-85e8-72295baf6fbe: Successfully authorized testUser 2018-12-20 15:28:18,760 [5324|21|DEBUG] PluginDriver:73c9ec33-d965-4f47-85e8-72295baf6fbe: Processing gateways for user testUser, 1 plugins available 2018-12-20 15:28:18,760 [5324|21|DEBUG] PluginDriver:73c9ec33-d965-4f47-85e8-72295baf6fbe: Calling 12fa152d-a2e3-4c8d-9535-5dcd49dfcb6d 2018-12-20 15:28:18,776 [5324|21|DEBUG] LocalMachine: AuthenticatedUserGateway(73c9ec33-d965-4f47-85e8-72295baf6fbe) for user: testUser 2018-12-20 15:28:18,791 [5324|21|DEBUG] LocalAccount[testUser]: SyncToLocalUser() 2018-12-20 15:28:18,901 [5324|21|DEBUG] LocalAccount[testUser]: Checking for groups to remove. 2018-12-20 15:28:19,104 [5324|21|DEBUG] LocalAccount[testUser]: Checking for groups to add 2018-12-20 15:28:19,104 [5324|21|DEBUG] LocalAccount[testUser]: End SyncToLocalUser() 2018-12-20 15:28:19,119 [5324|21|INFO ] PluginDriver:73c9ec33-d965-4f47-85e8-72295baf6fbe: Successfully processed gateways for testUser 2018-12-20 15:28:19,119 [5324|21|DEBUG] PluginDriver:73c9ec33-d965-4f47-85e8-72295baf6fbe: End login chain, 1 stateful plugin(s). 2018-12-20 15:28:19,119 [5324|21|DEBUG] LdapPlugin: EndChain 2018-12-20 15:28:19,119 [5324|21|DEBUG] LdapServer: Closing LDAP connection to ldap.mydomain.com. 2018-12-20 15:28:19,135 [5324|21|ERROR] Abstractions: GetUserProfileDirectory error:Das System kann die angegebene Datei nicht finden 2018-12-20 15:28:19,135 [5324|21|INFO ] pGina.Service.Impl: ses add LocalProfilePath:[] 2018-12-20 15:28:19,135 [5324|21|INFO ] pGina.Service.Impl: add user testUser to sessioninfo:1 GUID:73c9ec33-d965-4f47-85e8-72295baf6fbe CREDUI:false 2018-12-20 15:28:19,151 [5324|21|INFO ] pGina.Service.Impl: ses username:testUser description:pGina created credui:False isLoggedIN:False 2018-12-20 15:28:19,182 [5324|16|DEBUG] RemoteLog[NativeLib]: [Credential.cpp:799] Credential::ReportResult(0x00000000, 0x00000000) 2018-12-20 15:28:21,025 [5324|7|INFO ] pGina.Service.Impl: SessionChange:1 5 2018-12-20 15:28:21,041 [5324|35|INFO ] pGina.Service.Impl: SessionChange: 1 -> SessionLogon 2018-12-20 15:29:11,805 [5324|19|DEBUG] RemoteLog[NativeLib]: [Provider.cpp:281] Provider::UnAdvise() - provider events callback reference released 2018-12-20 15:29:11,815 [5324|23|DEBUG] RemoteLog[NativeLib]: [Provider.cpp:102] Stopping service state helper thread (if necessary) 2018-12-20 15:30:02,232 [5324|7|INFO ] pGina.Service.Impl: SessionChange:1 6 2018-12-20 15:30:02,232 [5324|36|INFO ] pGina.Service.Impl: SessionChange: 1 -> SessionLogoff 2018-12-20 15:30:02,232 [5324|36|INFO ] pGina.Service.Impl: Logoff in progress 1 2018-12-20 15:30:02,248 [5324|36|INFO ] pGina.Service.Impl: CREDUIhelper:(1) 2018-12-20 15:30:02,248 [5324|36|INFO ] pGina.Service.Impl: info: username:testUser credui:False description:pGina created session:1 2018-12-20 15:30:02,248 [5324|36|INFO ] pGina.Service.Impl: info: username:testUser credui:False description:pGina created session:1 2018-12-20 15:30:02,248 [5324|36|INFO ] pGina.Service.Impl: info: username:testUser credui:False description:pGina created session:1 2018-12-20 15:30:02,248 [5324|36|INFO ] pGina.Service.Impl: Logoff completed 1 2018-12-20 15:30:02,342 [5324|7|INFO ] pGina.Service.Impl: SessionChange:1 2 2018-12-20 15:30:02,342 [5324|39|INFO ] pGina.Service.Impl: SessionChange: 1 -> ConsoleDisconnect 2018-12-20 15:30:02,670 [5324|7|INFO ] pGina.Service.Impl: SessionChange:2 1 2018-12-20 15:30:02,685 [5324|40|INFO ] pGina.Service.Impl: SessionChange: 2 -> ConsoleConnect 2018-12-20 15:30:02,998 [5324|14|DEBUG] RemoteLog[NativeLib]: [Provider.cpp:95] Starting service state helper thread 2018-12-20 15:30:03,091 [5324|3|DEBUG] RemoteLog[NativeLib]: [CredentialProviderFilter.cpp:74] CredentialProviderFilter::Filter 2018-12-20 15:30:03,185 [5324|15|DEBUG] RemoteLog[NativeLib]: [Provider.cpp:129] Provider::SetUsageScenario(1, 0x00000000) 2018-12-20 15:30:03,201 [5324|11|DEBUG] RemoteLog[NativeLib]: [CredentialProviderFilter.cpp:74] CredentialProviderFilter::Filter 2018-12-20 15:30:03,201 [5324|25|DEBUG] RemoteLog[NativeLib]: [Provider.cpp:270] Provider::Advise(000001CA42091910, 000000000000000C) - provider events callback reference added 2018-12-20 15:30:03,201 [5324|30|DEBUG] RemoteLog[NativeLib]: [Provider.cpp:439] SerializedUserNameAvailable: No serialized creds set 2018-12-20 15:30:03,201 [5324|26|DEBUG] RemoteLog[NativeLib]: [Provider.cpp:439] SerializedUserNameAvailable: No serialized creds set 2018-12-20 15:30:03,201 [5324|28|DEBUG] RemoteLog[NativeLib]: [Provider.cpp:456] SerializedPasswordAvailable: No serialized creds set 2018-12-20 15:30:03,201 [5324|20|DEBUG] RemoteLog[NativeLib]: [Provider.cpp:473] SerializedDomainNameAvailable: No serialized creds set 2018-12-20 15:30:03,216 [5324|16|DEBUG] RemoteLog[NativeLib]: [Credential.cpp:177] Credential::GetBitmapValue: Loading image from: C:\Program Files\pGina.fork\pgina.jpg

MutonUfoAI commented 5 years ago

You should READ the doc http://mutonufoai.github.io/pgina/documentation/user.html#selecting_and_configuring_plugins http://mutonufoai.github.io/pgina/documentation/plugins/local_machine.html#notification

Oskar1983 commented 5 years ago

So after READING that it is basically working. However sometimes profiles are still kept. Is it possible to force pgina to delete old "pgina Created" profiles?