cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
1430
Views
0
Helpful
2
Replies

aaa authentication listener with customized login page

Hi,

is it possible to customize the login page on an ASA 5520 8.2(1) that pops up when using the "aaa authentication listener" by adding images? I know that there is the "auth-prompt" command but this only allows to add text. Is there any form of html that allows the inclusion of gif, bmp or jpg?

Any hint is appreciated very much.

Mat


					
				
			
			
				
			
			
				
1 Accepted Solution

Accepted Solutions

Herbert Baerten
Cisco Employee
Cisco Employee

Hi Matthias,

officially, no this is not possible. There is an enhancement request for this :

CSCsh02789    Enhancement: Ability to customize the cut-through proxy login page

So you may want to open a TAC case and ask to link it to the request (to add a little more weight to it) and/or contact your account team and ask them to talk to the business unit about it (to add more weight ).

Having said that, there is a possible hack that you might want to try:

e.g I configured:

  auth-prompt prompt Please log inhttp://myserver/image.gif">

and it shows the image below the prompt. It's a hack of course so not supported, so it may break in future versions. And of course it is pretty limited in what you can do.

Now if you disable the listener, for HTTP it will use basic browser authentication (no login form) but for HTTPS it will still use a form, but a much more basic one so you can still use the same hack with a bit more flexibility.

hth

Herbert

View solution in original post

2 Replies 2

Herbert Baerten
Cisco Employee
Cisco Employee

Hi Matthias,

officially, no this is not possible. There is an enhancement request for this :

CSCsh02789    Enhancement: Ability to customize the cut-through proxy login page

So you may want to open a TAC case and ask to link it to the request (to add a little more weight to it) and/or contact your account team and ask them to talk to the business unit about it (to add more weight ).

Having said that, there is a possible hack that you might want to try:

e.g I configured:

  auth-prompt prompt Please log inhttp://myserver/image.gif">

and it shows the image below the prompt. It's a hack of course so not supported, so it may break in future versions. And of course it is pretty limited in what you can do.

Now if you disable the listener, for HTTP it will use basic browser authentication (no login form) but for HTTPS it will still use a form, but a much more basic one so you can still use the same hack with a bit more flexibility.

hth

Herbert

Hi Herbert,

sorry to reply so late, thanks for the answer. It seems to be the solution for my problem, however I had no time testing it yet. Unfortunately I'm not in the postion to raise a TAC case but I will try to get to convince the account team next week to add this as a feature. It would be nice to have more features for a login page but with a gif or a jepg you are pretty much set for a disclaimer page.


Kind regards,

Mat