MutonUfoAI / pgina

pGina fork: Open Source Windows Authentication
http://mutonufoai.github.io/pgina
BSD 3-Clause "New" or "Revised" License
155 stars 38 forks source link

Login with domain user UPN with RDP #82

Closed jshivok closed 6 years ago

jshivok commented 7 years ago

I have a question on the proper way to get this working. I am trying to login using a user we have setup with a custom userPrincipalName. eg. user1@compa I am using Local Machine plugin with Gateway enabled. and LDAP plugin. This processes through the plugins but then I get an error: No mapping between account names and Security ID's was done. then logs me out.

If i attempt to login using the users samAccountName user1.abc it bypasses the plugins all together. Also a local account gets automatically created when i login with user1@compa but not with user1.abc On a separate note, is there a way to just force all users to authenticate regardless of 'pGina Created' attribute? Any help would be appreciated, love the work on this project!

Some additional log info that may help. the computer domain is: iitdev.local 2017-10-20 14:50:40,978 [1108|18|DEBUG] RemoteLog[NativeLib]: [Provider.cpp:473] SerializedDomainNameAvailable: couldn't work out domain name 2017-10-20 14:50:40,979 [1108|17|DEBUG] RemoteLog[NativeLib]: [Provider.cpp:473] SerializedDomainNameAvailable: couldn't work out domain name 2017-10-20 14:50:40,983 [1108|29|DEBUG] RemoteLog[NativeLib]: [Credential.cpp:492] Credential::Connect: Processing login for j1@mfa3 2017-10-20 14:50:40,986 [1108|14|DEBUG] PluginDriver:56d20104-4f94-45df-b979-fa31f01fa997: New PluginDriver created 2017-10-20 14:50:40,988 [1108|14|INFO ] pGina.Service.Impl: domain:compa 2017-10-20 14:50:40,989 [1108|14|INFO ] pGina.Service.Impl: domain:compa 2017-10-20 14:50:40,992 [1108|14|INFO ] pGina.Service.Impl: domain check:[False] [True] [True] 2017-10-20 14:50:40,992 [1108|14|DEBUG] pGina.Service.Impl: domain logon: Username:user1domainmember:iitdev.local domain:compa

MutonUfoAI commented 7 years ago

http://mutonufoai.github.io/pgina/documentation/user.html

just force all users to authenticate regardless of 'pGina Created' attribute?

no