Thanks for your reply. I came up with this logouthook script:

delete user

/usr/bin/dscl . delete /Users/student

delete home directory

/usr/bin/chflags -Rf nouchg /Users/student
/bin/rm -Rf /Users/student

create user

/usr/bin/dscl . create /Users/student
/usr/bin/dscl . create /Users/student shell /bin/bash
/usr/bin/dscl . create /Users/student RealName "student" /usr/bin/dscl . create /Users/student UniqueID "1010"
/usr/bin/dscl . create /Users/student PrimaryGroupID 20
/usr/bin/dscl . create /Users/student NFSHomeDirectory /Users/student
/usr/bin/dscl . create /Users/student picture "/Library/User Pictures/Fun/Ma.png"
/usr/bin/dscl . passwd /Users/student ""

Still needs some testing but it seems to do the Job.
Thanks!

Apparently it's better to use sysadminctl to do this rather than dscl.

Okay but how would you translate the above script to sysadminctl?

I think it's something like:

sysadminctl -deleteUser username

you can add -secure to securely delete the folder if you want to.

Yes i tried that but the homefolder is not deleted, it must be run as root. maybe it will work if i let a Launchdeamon launch the script but haven't tried that yet.
With dscl it seemed to work but it's not reliable. it doesn't always delete the folder so i need to find a way to make it reliable.

The Jamf binary is granted access by default for enrolled devices. You should be able to use it to remove the user and the home directory on logout.

/usr/local/bin/jamf deleteAccount -username student -deleteHomeDirectory

sysadminctl should work fine if you run it via a launch daemon.

I've been using a script on logout to remove any home directories other than the ones specified in the script. I just started testing it with Mojave and all seems to work. However I've found that it deletes the contents of the home folder first on logout and then will delete that folder after another restart or when another user logs in and logs out..

I tried using a launchdeamon to launch the script but it resulted in:
"it's either last admin user or last secure token user neither of which can be deleted"

However thanks to the suggestion of jcarr is was able to delete the useraccount.

This is what i came up with:

The logouthook:
touch /Users/Shared/studentloggedout

The Launchdeamon:
<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
<plist version="1.0">
<dict> <key>Label</key> <string>com.ma.cleanuphomedirwatcher.plist</string> <key>ProgramArguments</key> <array> <string>/Library/Scripts/cleanuphomedir.sh</string> </array> <key>RunAtLoad</key> <true/> <key>KeepAlive</key> <true/>
</dict>
</plist>

the script:

!/bin/sh

if [ -f /Users/Shared/studentloggedout ];
then
/usr/local/bin/jamf deleteAccount -username student -deleteHomeDirectory
sysadminctl -addUser student -fullName "student" -password "" -picture /Library/User Pictures/Fun/Ma.png
pkill loginwindow
rm -f /Users/Shared/studentloggedout
else
exit 0
fi

exit

Above launchdeamon approach seemed to work fine but after restart the system hangs at startup. i geuss the script is not finished in time before the restart takes place.

Seems like the best option is to use the good old logouthook to run:
/usr/local/bin/jamf deleteAccount -username student -deleteHomeDirectory
sysadminctl -addUser student -fullName "student" -password "" -picture /Library/User Pictures/Fun/Ma.png

Is there a way to make Jamf just delete the homedirectory? it is not neccesary to delete the user, so the re-creation of the user can be skipped.

We are using a Script to delete the Home Directory on Logout. From 10.14 onwards the following PPPC Whitelist is necessary for it to work.

Thanks, i'll keep that in mind for future purposes.

claudiogardini can you share the script you use?