Custom handling of domain user profile creation

login windows-7 user-profile gina

Solution 1:

What you could do in this case, is to create a windows service running with LocalSystem privileges and communicate with it with your credentials provider.

When a user enters his/her credentials to the ICredentialsProvider, the would contact the windows service and the service will handle the authentication.

Upon a successful authentication, the service should verify that such an account is locally present in the system otherwise create a new local account with NetUserAdd and log in with that account into the system.

Bear in mind that ICredentialsProvider does not have the privileges to create local account or use most of the Net* functions, that's why I'm suggesting to create a windows service with LocalSystem privs.

Solution 2:

If you just want to make a small number of changes to profiles then you might consider using Active Setup.

Once you set this up on the machine it will run just after the user's profile loads, and you can then make user-specific changes to their files/settings etc.

Related

Apache proxy: passing on REMOTE_USER to backend server
SSL config for web server compatible with PCI-DSS requirements about disabling CBC and TLSv1.0
FreeRadius return User Groups in Class field
How to find out that SMTP server is in open relay?
Parse and validate Asterisk dialplan before commiting
HAProxy/Varnish: redirecting a percentage of traffic
Nginx rate limiting - only slowdown if ceiling hit
unknown directive "fastcgi_pass" on nginx
Bonding/Teaming 2 NIC cards : pro and cons
Python - Itterate down dictionairy - move down tree conditionally
I am getting repeated input values as an Output when I am trying to get User Input from Prompt box and showing those input values in an Array
ion picker options overlaps