Me thinks: Credential manager for keymgr
Just came across a problem where a user was authenticating to shares on a file server as another user. It turned out that the other user had used their credentials previously, and they were stored in the Credential Manager associated with the logged on user.
In order to avoid this, I verified that there was a startup script runnign that unmapped drives whenever any user logs on (using local GP) [did I mention that the user is a local user not a domain user?].
I came across an interesting article with a sample application that could enumerate the credential store for a user session: https://www.microsoft.com/indonesia/msdn/credmgmt.aspx This will allow me to list stored credentials, and if they don’t match the logged on user, then delete them.