When trying to log into Grafana Web UI using an OIDC provider, in my case, Dex. The login would fail due to the error “User already exists”, after some time. This happened for any users given access via the OIDC.
This looks to happen due to a CVE fix implemented in Grafana as documented in the two comments below:
To resolve this issue, for Grafana 10.0.x and 9.5.6, the env variable
GF_AUTH_OAUTH_ALLOW_INSECURE_EMAIL_LOOKUP can be set or the config key
oauth_allow_insecure_email_lookup can be set under the
Source + Source 2
Hope this helps anyone stuck out there!
A quick post. I had an issue the other day where I had to remotely administer a server on another site. When I logged in I was greeted by a white screen.
I needed to boot off this account and then log back in as the same user. Unfortunately this was the only administrator account available.
So I logged as a power user, opened up a command prompt by holding down “Shift” + Right Click to display the “Run as different user” option.
I then used the following options to view the logged in users and their session ID’s and used that information to log off the troublesome account.
SET PATH = %PATH%;C:WindowsSystem32DLLCache;
This allows you to query the user sessions on the local server or a remote device.
Display information about users logged on to the system.
QUERY USER [username | sessionname | sessionid] [/SERVER:servername]
username Identifies the username.
sessionname Identifies the session named sessionname.
sessionid Identifies the session with ID sessionid.
/SERVER:servername The server to be queried (default is current).
From here, I take the Session ID and execute the “logoff” command pointing to the localhost.
logoff /Server:localhost 6 /v
Below are the options available with this command, the 6 represents the sessionID, and /v outputs the details to the console
Terminates a session.
LOGOFF [sessionname | sessionid] [/SERVER:servername] [/V] [/VM]
sessionname The name of the session.
sessionid The ID of the session.
/SERVER:servername Specifies the Remote Desktop server containing the user
session to log off (default is current).
/V Displays information about the actions performed.
/VM Logs off a session on server or within virtual machine. The unique ID of the session needs to be specified.
Finally hears a screenshot of my console window.