Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
gmarcuccetti
Staff
Staff

Created on ‎12-20-2020 11:45 PM Edited on ‎06-09-2022 03:25 PM By Anonymous

Article Id 192646

Technical Tip: How to create a blank page for SSL VPN Portal with replacement messages

Description
If SSL VPN is only used in tunnel mode, the login page for web mode will still be present.
It will not be possible to login, but in a few cases even the login page is unwanted.

This article describes how to create a blank page for SSL VPN Portal with replacement messages.

Solution
As the web server cannot be disabled, the only possible workaround is to edit the HTML code for the replacement page from System -> Replacement Messages -> SSL VPN -> SSL-VPN Login Page.



 
 
The original text is:
<!DOCTYPE html>
<html lang="en" class="main-app">
  <head>
    <meta charset="UTF-8">
    <meta http-equiv="X-UA-Compatible" content="IE=8; IE=EDGE">
    <meta name="viewport" content="width=device-width, initial-scale=1">
    <meta name="apple-itunes-app" content="app-id=1475674905">
    <link href="/css/main-blue.css" rel="stylesheet" type="text/css">
    <title>
      Please Login
    </title>
  </head>
  <body>
    <div class="view-container">
      <form class="prompt" action="%%SSL_ACT%%" method="%%SSL_METHOD%%" name="f" autocomplete="off">
        <div class="content with-header">
          <div class="header">
            <f-icon class="ftnt-fortinet-grid icon-xl">
            </f-icon>
            <div id="login-login">
              Please Login
            </div>
          </div>
          <div class="sub-content">
            <div class="wide-inputs">
              %%SSL_LOGIN%%
            </div>
            <div class="button-actions wide">
              <button class="primary" type="button" name="login_button" id="login_button" onClick="try_login()">
                Login
              </button>
              <button type="button" name="skip_button" id="skip_button" onClick="try_skip()" style="display:none">
                Skip
              </button>
              <button id="launch-forticlient-button" type="button" onClick="launchFortiClient()">
                <f-icon class="ftnt-forticlient">
                </f-icon>
                <span>
                  Launch FortiClient
                </span>
              </button>
              <iframe id="launch-forticlient-iframe" style="display:none">
              </iframe>
              <button id="saml-login-bn" class="primary" type="button" name="saml_login_bn" onClick="launchSamlLogin()"  style="display:none">
                SSO Login
              </button>
            </div>
          </div>
        </div>
      </form>
    </div>
  </body>
  %%SSL_HIDDEN%%
</html>
A possible blank example of HTML can be:
<!DOCTYPE html>
<html lang = "en" class = "main-app">
 <f-icon class = "ftnt-forticlient">
 </f-icon>

 
 
With this HTML replacement message the SSL VPN login web page will be just empty.

Note.
The webpage will still be available, but empty - thus no login page available.

It is also possible place other things there, but be aware that replacement message customization is not part of the support contract.
'Restore Default' if needed.

Another example:
<!DOCTYPE html>
<p>
  Please contact your administrator to connect to your VPN.
</p>
<p>
  <a href="mailto:support@fortinet.com">
    support@forti.local
  </a>
</p>



Labels:
5872
0 Kudos
Submit Article Idea
Contributors
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.