Created on 12-20-2020 11:45 PM Edited on 06-09-2022 03:25 PM By Anonymous
Description
If SSL VPN is only used in tunnel mode, the login page for web mode will still be present.
It will not be possible to login, but in a few cases even the login page is unwanted.
This article describes how to create a blank page for SSL VPN Portal with replacement messages.
Solution
As the web server cannot be disabled, the only possible workaround is to edit the HTML code for the replacement page from System -> Replacement Messages -> SSL VPN -> SSL-VPN Login Page.
<!DOCTYPE html>A possible blank example of HTML can be:
<html lang="en" class="main-app">
<head>
<meta charset="UTF-8">
<meta http-equiv="X-UA-Compatible" content="IE=8; IE=EDGE">
<meta name="viewport" content="width=device-width, initial-scale=1">
<meta name="apple-itunes-app" content="app-id=1475674905">
<link href="/css/main-blue.css" rel="stylesheet" type="text/css">
<title>
Please Login
</title>
</head>
<body>
<div class="view-container">
<form class="prompt" action="%%SSL_ACT%%" method="%%SSL_METHOD%%" name="f" autocomplete="off">
<div class="content with-header">
<div class="header">
<f-icon class="ftnt-fortinet-grid icon-xl">
</f-icon>
<div id="login-login">
Please Login
</div>
</div>
<div class="sub-content">
<div class="wide-inputs">
%%SSL_LOGIN%%
</div>
<div class="button-actions wide">
<button class="primary" type="button" name="login_button" id="login_button" onClick="try_login()">
Login
</button>
<button type="button" name="skip_button" id="skip_button" onClick="try_skip()" style="display:none">
Skip
</button>
<button id="launch-forticlient-button" type="button" onClick="launchFortiClient()">
<f-icon class="ftnt-forticlient">
</f-icon>
<span>
Launch FortiClient
</span>
</button>
<iframe id="launch-forticlient-iframe" style="display:none">
</iframe>
<button id="saml-login-bn" class="primary" type="button" name="saml_login_bn" onClick="launchSamlLogin()" style="display:none">
SSO Login
</button>
</div>
</div>
</div>
</form>
</div>
</body>
%%SSL_HIDDEN%%
</html>
<!DOCTYPE html>
<html lang = "en" class = "main-app">
<f-icon class = "ftnt-forticlient">
</f-icon>
With this HTML replacement message the SSL VPN login web page will be just empty.
Note.The webpage will still be available, but empty - thus no login page available.
It is also possible place other things there, but be aware that replacement message customization is not part of the support contract.'Restore Default' if needed.
Another example:
<!DOCTYPE html>
<p>
Please contact your administrator to connect to your VPN.
</p>
<p>
<a href="mailto:support@fortinet.com">
support@forti.local
</a>
</p>
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.