How to Add a Disclaimer to the Access Gateway Enterprise Edition

How to Add a Disclaimer to the Access Gateway Enterprise Edition

How to Add a Disclaimer to the Access Gateway Enterprise Edition

This post has already been read 6609 times!

Netscaler Symphony Login Page

Netscaler Symphony Login Page

Summary

Before a user can log in to the Access Gateway Enterprise Edition, some organizations need to display a disclaimer on the login page that the user must agree. This article contains information about adding a disclaimer to the Access Gateway Enterprise Edition login page that forces the users to agree before logging in.

Background

By default, Access Gateway Enterprise Edition does not have the functionality to display a disclaimer before users log in.

Note: These instructions are provided as-is. The Citrix Technical support might request you to change back to the original settings when troubleshooting issues related to authentication.

Adding a Disclaimer to the Login Page

In the procedure to add a disclaimer to the login page of the Access Gateway Enterprise Edition, the following files are used:

• /netscaler/ns_gui/vpn/index.html

• /netscaler/ns_gui/vpn/login.js

To add a disclaimer to the login page of the Access gateway Enterprise Edition, complete the following procedure:

  • Copy the index.html and login.js files to the local computer.
  • Open the index.html file in a text editor and make the following changes to the content of the file:
  • Search the login button definition in the main table.
This definition is available at approximately line number 67.
  • Add the text, highlighted in bold face for your reference, as shown in the following snippet:
<table width=70% id=”ctl08_inputTable” cellspacing=”0″ cellpadding=”4″ border=”0″ style=”border-width:0px;border-collapse:collapse;”>
<tr><td colspan=3></td></tr>
<tr>
<td align=”right” style=”padding-right:10px;”><span>User&nbsp;name:</span></td>
<td colspan=2 style=”padding-right:8px;”><input style=”font-size: 8pt” type=”text” title=”Enter user name” name=”login” size=”30″ maxlength=”127″ onFocus=”loginFieldCheck()”style=”width:100%;” /></td>
</tr>
<SCRIPT language=JavaScript>ns_showpwd();</SCRIPT>
<tr>
<!– Disclaimer customization – Add a name to the LogonButton in order to be referenced later –>
<td></td><td></td><td align=”right”><input type=”submit” value=”Log On” onclick=”ns_check();” onmouseover=”this.className=’CTX_CaxtonButton_Hover’;” onmouseout=”this.className=’CTX_CaxtonButton’;” name=”LogonButton” disabled=”true”/></td>
</tr>
</table>
<!– Disclaimer customization –>
<input type=”checkbox” name=”chk1_button” onClick=”enableLogonButton(this);”/> Please enter you disclaimer text here
<!– End of Disclaimer customization–>
</FORM>
  • Open the login.js file in a text editor and add the following function at the end of the file:
function enableLogonButton(obj)
{
var loginForm = document.vpnForm;
if(obj.checked){
loginForm.elements[“LogonButton”].disabled=false;
}
else{
loginForm.elements[“LogonButton”].disabled=true;
}
}
  • Save the changes ad copy both the files to the /netscaler/ns_gui/vpn/ directory of the NetScaler appliance.
  • Refresh the Access Gateway Virtual server login page. The changes made in the preceding steps are displayed on the login page, as shown in the following screen shot. With this change, the user cannot log in without agreeing to the disclaimer.

Retaining the Changes to the Login Page after the Appliance is Restarted

To ensure that the changes are available when you restart the appliance, complete the following procedure:

  • Connect to the appliance using an SSH client.
  • Run the shell command.
  • Run the following command to make a directory that stores the custom file:
    mkdir /var/customizations
  • Run the following commands to copy the modified files to the directory you have created:
    cp /netscaler/ns_gui/vpn/index.html /var/customizations/
    cp /netscaler/ns_gui/vpn/login.js /var/customizations/
  • If it does not exist, run the following commands to create the rc.netscaler startup script in the /nsconfig directory:
    cd /nsconfig
    touch rc.netscaler
  • Edit the rc.netscaler file by using a text editor, such as the vi editor, to add the following entries to the file:
    cp /var/customizations/index.html /netscaler/ns_gui/vpn/index.html
    cp /netscaler/ns_gui/vpn/index.html /var/customizations/
  • Save and close the file.

2 thoughts on “How to Add a Disclaimer to the Access Gateway Enterprise Edition

  1. Dasha

    So basically, the ennreonmivt I have crafted of over the past 10 years with a tightly controlled desktop for my users is now pissed away?I do not need nor want StoreFront. What I do need is a controlled way for my users to go to their Desktop and click the programs I give them without jumping through Hoops.If this is the future for Citrix, it is time to start looking at other vendors. 2X comes to mind.

    1. Bretty Post author

      Hi there. This is a pretty old post now, the new NetScalers have better options around disclaimers added through GUI. Failing that you can always use certificate based authentication on corporate owned devices with single factor authentication. That’s a simpler way of signing in.

Leave a Reply

Your email address will not be published. Required fields are marked *