01-20-2011 02:13 PM - edited 03-10-2019 05:44 PM
Hi,
is it possible to customize the login page on an ASA 5520 8.2(1) that pops up when using the "aaa authentication listener" by adding images? I know that there is the "auth-prompt" command but this only allows to add text. Is there any form of html that allows the inclusion of gif, bmp or jpg?
Any hint is appreciated very much.
Mat
Solved! Go to Solution.
01-24-2011 01:39 AM
Hi Matthias,
officially, no this is not possible. There is an enhancement request for this :
CSCsh02789 Enhancement: Ability to customize the cut-through proxy login page
So you may want to open a TAC case and ask to link it to the request (to add a little more weight to it) and/or contact your account team and ask them to talk to the business unit about it (to add more weight ).
Having said that, there is a possible hack that you might want to try:
e.g I configured:
auth-prompt prompt Please log inhttp://myserver/image.gif">
and it shows the image below the prompt. It's a hack of course so not supported, so it may break in future versions. And of course it is pretty limited in what you can do.
Now if you disable the listener, for HTTP it will use basic browser authentication (no login form) but for HTTPS it will still use a form, but a much more basic one so you can still use the same hack with a bit more flexibility.
hth
Herbert
01-24-2011 01:39 AM
Hi Matthias,
officially, no this is not possible. There is an enhancement request for this :
CSCsh02789 Enhancement: Ability to customize the cut-through proxy login page
So you may want to open a TAC case and ask to link it to the request (to add a little more weight to it) and/or contact your account team and ask them to talk to the business unit about it (to add more weight ).
Having said that, there is a possible hack that you might want to try:
e.g I configured:
auth-prompt prompt Please log inhttp://myserver/image.gif">
and it shows the image below the prompt. It's a hack of course so not supported, so it may break in future versions. And of course it is pretty limited in what you can do.
Now if you disable the listener, for HTTP it will use basic browser authentication (no login form) but for HTTPS it will still use a form, but a much more basic one so you can still use the same hack with a bit more flexibility.
hth
Herbert
01-28-2011 09:54 AM
Hi Herbert,
sorry to reply so late, thanks for the answer. It seems to be the solution for my problem, however I had no time testing it yet. Unfortunately I'm not in the postion to raise a TAC case but I will try to get to convince the account team next week to add this as a feature. It would be nice to have more features for a login page but with a gif or a jepg you are pretty much set for a disclaimer page.
Kind regards,
Mat
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide