PDQ Deploy and WatchGuard
We use a WatchGuard firewall for Single Sign-On authentication exiting our network. After deploying a package such as Java to selected PCs, my adminpdq account refuses to release its WatchGuard authentication.
This causes the Users on those PCs to be invalidated on the WatchGuard firewall and blocking them from reaching the internet until they restart the PC.
I can go into WatchGuard and manually log off adminpdq on those PCs, but it immediately reauthenticates adminpdq thus blocking the user again.
Any ideas about what is going on here?
PDQDeploy version 14 Release 2
Java package is set to Push and run as Deploy User (adminpdq)
One Install step with a custom command line of: jre-8u144-windows-x64.exe INSTALL_SILENT=Enable AUTO_UPDATE=Disable SPONSORS=Disable WEB_ANALYTICS=Disable REMOVEOUTOFDATEJRES=1
This package is deployed to only 11 targets, but they range in OS including: Windows 10 1703, Windows 8.1, Windows Server 2008 R2, and Windows Server 2012.
Are you using the SSO Client or the Event Log Monitor?
Is there any way to make Watchguard ignore the PDQ user? My theory is that the SSO Client either doesn't update when a user logs off or it doesn't know how to tell when PDQ closes its non-GUI session.
Can you run a test for me please?
Sorry it took me a bit to get back to this. My results agree with your theory. Now, just to find a way to get WatchGuard to ignore a certain user.
Please sign in to leave a comment.