Cisco Cisco Clean Access 3.5
7-2
Cisco Clean Access Manager Installation and Administration Guide
OL-7044-01
Chapter 7 User Pages and Guest Access
User Login Page
Cisco Clean Access detects a number of client operating system types, including Windows, MAC, Linux,
Unix, Palm, Windows CE, and others. Cisco Clean Access determines the OS the client is running from
the OS identification in the HTTP GET request, the most reliable and scalable method. When a user
makes a web request from a detected operating system, such as Windows XP, the CAS can respond with
the page specifically adapted for the target OS.
Unix, Palm, Windows CE, and others. Cisco Clean Access determines the OS the client is running from
the OS identification in the HTTP GET request, the most reliable and scalable method. When a user
makes a web request from a detected operating system, such as Windows XP, the CAS can respond with
the page specifically adapted for the target OS.
When customizing the login page, you can use several styles:
•
Frame-based login page (in which the login fields appear in a left-hand frame). This allows logos,
files, or URLs to be referenced in the right frame of the page.
files, or URLs to be referenced in the right frame of the page.
•
Frameless login page (shown in
)
•
Small screen frameless login page. The small page works well with Palm and Windows CE devices.
The dimensions of the page are about 300 by 430 pixels.
The dimensions of the page are about 300 by 430 pixels.
Additionally, you can customize images, text, colors, and most other properties of the page.
Note
If a login page is customized to reference a URL, a traffic policy must also be created for the
Unauthenticated role that allows the user HTTP access to the server on which the resource resides. See
Unauthenticated role that allows the user HTTP access to the server on which the resource resides. See
for details.
This section describes how to add and customize the login page for all Clean Access Servers using the
global forms of the Clean Access Manager. To override the global settings and customize a login page
for a particular Clean Access Server, use the local configuration pages found under Device Management
> CCA Servers > Manage [CAS_IP] > Misc > Login Page. For further details, see the Cisco Clean
Access Server Installation and Administration Guide.
global forms of the Clean Access Manager. To override the global settings and customize a login page
for a particular Clean Access Server, use the local configuration pages found under Device Management
> CCA Servers > Manage [CAS_IP] > Misc > Login Page. For further details, see the Cisco Clean
Access Server Installation and Administration Guide.
Proxy Settings
By default, the Clean Access Server redirects client traffic on ports 80 and 443 to the login page. If a
user has proxy settings for their web browser (in Internet Explorer, this is configured under Tools ->
Internet Options -> Connections -> LAN Settings -> Proxy server), the Clean Access Server does not
care which proxy server is being used but will need to have additional ports (for example, 3128, 8080,
8000, 6588, 3382, 3127) configured in order to direct client traffic appropriately to the login page.
user has proxy settings for their web browser (in Internet Explorer, this is configured under Tools ->
Internet Options -> Connections -> LAN Settings -> Proxy server), the Clean Access Server does not
care which proxy server is being used but will need to have additional ports (for example, 3128, 8080,
8000, 6588, 3382, 3127) configured in order to direct client traffic appropriately to the login page.
Note
You can configure additional ports from which to redirect proxied HTTP requests to the login page from
Device Management > Clean Access Servers > Manage [CAS_IP_address] > Advanced > Proxy.
See the Clean Access Server Installation and Administration Guide for details.
Device Management > Clean Access Servers > Manage [CAS_IP_address] > Advanced > Proxy.
See the Clean Access Server Installation and Administration Guide for details.