Adming login page customization

Question

Hi,  
&nbsp;    
&nbsp;  Anyone knows how to delete Firepass information:  
&nbsp;    
&nbsp;  Consola de administración de FirePass 4300  
&nbsp;  Versión - FirePass 6.1.0  
&nbsp;  Fri, 9 Oct 2009 20:22 PST  
&nbsp;  URM-6.10-20091009   
&nbsp;    
&nbsp;  from admin login page?

mike_61719 · Answer

Can you repeat that? Why are you trying to delete logs?

fmartos_30060 · Answer

No... not at all, of course.   
&nbsp;      
&nbsp;   What I'm trying to do is not showing information about Firepass version in the admin login page... I think it's easy to understand, but is not documented anywhere... so, I'm just asking if anyone knows how to "delete" that information from the login page...   
&nbsp;  
&nbsp; In the included image is the red marked area

don_ryles_52501 · Answer

I can't see any way to remove that information from the standard admin access. I guess that you don't want a person who is not authenticated to see what the device is and the version of code being run. 
&nbsp;  
&nbsp; What you could perhaps do is to setup another IP address and define an new web service in Device Management | Configuration | Network Configuration | Web Services and tick "SSL only" and "admin logon" to that web service. Doing that would present the standard logon screen or you could define your own logon screen as a "Virtual host based customisation" used when connecting to that new IP address. Then configure the real management interface on a private management network where that access is more tightly controlled. Could that work? 
&nbsp;  
&nbsp; Regards, 
&nbsp; Kevin

fmartos_30060 · Answer

Thanks for you answer. You're correct... I don't want any internet user to get that information about the controller. 
&nbsp;  
&nbsp; I've being playing with your method, but I found a "problem". I added the second IP, with Admin, and SSL options. I just uploaded a test index.htm using Webdav to the controller, and if I try https://thenewip then the new index.htm is showed, but if I try https://thenewip/admin then, again, full admin login page is showed...  
&nbsp;  
&nbsp; If I disable admin access and enable user access, https://thenewip automatically redirects to https://thenewip/admin ... :? 
&nbsp;  
&nbsp; Any new idea?

don_ryles_52501 · Answer

Yes, you're right if I use http://myurl/admin then it does go to the standard admin login screen. Hmm...! 
&nbsp;  
&nbsp; The URL that I use here is enabled for both user and admin access and so if I want to login for user functions then when I use my standard user credentials. If I use the inbuilt adminsitrator credentials at that same login screen then it takes me to the admin console view. 
&nbsp;  
&nbsp; As you say it does still expose the FirePass infrmation if somebody is creative enough to put the /admin on the end of the URL. 
&nbsp;  
&nbsp; How about not allowing any admin access from an externally accessible IP address and rely on having a separate IPSec VPN access to get to the management screen through the private management IP address? 
&nbsp;  
&nbsp; Regards, 
&nbsp; Kevin

Forum Discussion

Adming login page customization

Recent Discussions

Default retry time inband monitor

how to monitor the axfr master response

Http / https health monitor issue

I used the wrong email account when take Application Delivery Exam (101)

F5 looses the token for the first call

Related Content

Customizing APM end user login page with APM Advanced Customization Templates

F5 Distributed Cloud - Customer Edge Site - Deployment & Routing Options

F5 Distributed Cloud Customer Edge on F5 rSeries – Reference Architecture

Bypass Azure Login Page by adding a login hint in the SAML Request

Insufficient permissions BIG-IQ login error

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS