Home
About UsOur CustomersContact Us 24/7MVP Expert Zone
WRTU
Forefront EDGE | TMG | UAG | IAG | DAForefront Endpoint | FEP | FCSForefront Server | FPE | FPSP | FSOCS | FSMMCIdentity and Access Management | IAM | IDM | FIMGeneral ForefrontMicrosoft Security
Articles
Intelligent Application Gateway | IAG 2007Forefront Unified Access Gateway | UAG 2010Forefront Threat Management Gateway | TMG 2010Forefront UAG DirectAccess | DAForefront Endpoint Protection | FEP 2010Forefront Client Security | FCSForefront Protection for Exchange | FPEForefront Protection for SharePoint | FPSPForefront Security for OCS | FSOCSForefront Server Security Management Console FPMCSForefront Identity Manager | FIM 2010Active Directory SecurityActive Directory Rights Management Services AD RMSActive Directory Federation Services | AD FSActive Directory Certificate Services | AD CS PKI
Videos
Intelligent Application Gateway | IAG 2007Forefront Unified Access Gateway | UAG 2010Forefront Threat Management Gateway | TMG 2010Forefront UAG DirectAccess | DAForefront Endpoint Protection | FEP 2010Forefront Client Security | FCSForefront Protection for Exchange | FPEForefront Protection for SharePoint | FPSPForefront Security for OCS | FSOCSForefront Server Security Management Console FPMSCActive Directory SecurityActive Directory Rights Management Services AD RMSActive Directory Federation Services | AD FSActive Directory Certificate Services | AD CS PKI
Forums
General for all Forums | AnnouncementsIntelligent Application Gateway | IAG 2007Forefront Unified Access Gateway | UAG 2010Forefront Threat Management Gateway | TMG 2010Forefront UAG DirectAccess | DAForefront Client Security | FCSForefront Endpoint Protection | FEP 2010Forefront Online Protection for Exchange | FOPEForefront Protection for Exchange | FPEForefront Protection for SharePoint | FPSPForefront Security for OCS | FSOCSForefront Identity Manage | FIM 2010Active Direcroty SecurityActive Direcroty Rights Management Services AD RMSActive Directory Federation Services | AD FS | WIFActive Directory Certificate Services | AD CS PKI
TechNet Forums
Services
DesignImplementationProject ManagementCustom Development and Customization
Online Training
Online Store
Shopping Cart
Online Support
Online Support and Debugging Tools
ForefrontSecurity TV
 Â Â Â Â Â Â 
Article View
How to create custom Generic Browser-Embedded App SILENT SSLVPN template
Created by Idan on 9/29/2010 5:45:29 PM

Authors: Idan Plotnik, Security Engineer and Roy Barkai, IT Department, The Phoenix Group http://www.fnx.co.il

Date: 26/7/2009

Before you begin

When using the default "Generic Browser-Embedded App" template to publish Microsoft IAG, by default the end user will get the following popup

The following technical paper describes how to create custom Generic Browser-Embedded App SILENT SSLVPN template so the end user will not see the popup above

Important to know!

Please make sure you create a CustomUpdate folder as describe below!

If you don't see the new custom template after you finish creating the custom template - PLEASE CLOSE and OPEN again the configuration console

You can download the custom code presented in this article

Prerequisites

Non

Configuration Procedures

Phase 1: Create custom files

  1. Create new file "SSLVPNTemplates.xml" in the following location c:\Whale-Com\e-Gap\von\conf\

  2. Copy the following code into the file you created

  3. To test the file you created please double click on it and check that you don't have errors - see the print screens below:

    Undamaged file output

    Damaged file output

  4. Create new Folder "CustomUpdate" in the following directory c:\Whale-Com\e-Gap\von\conf\wizarddefaults\
  5. Create new file "WizardDefaultParam.ini" in the following location c:\Whale-Com\e-Gap\von\conf\

  6. Copy the following code into the file "WizardDefaultParam.Ini" you created

    [Application_List]

    NumOfApps=1

    App1=GenericWebRelaySilent

     

    [GenericWebRelaySilent]

    Name=Generic Browser-Embedded App-Silent

    AppType=2

    WhaleApp=0

    Types=1,2

    LegalCharsSet=abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789: @&=$+_-!',;~{}%

    DangerousCharsSet=/\\:*?""<>|.

    DengerousCharsIncludeNull=1

    ParamNameCaseSensitive=0

    ParamValCaseSensitive=0

    UrlCaseSensitive=0

    AllowWebdav=0

    PassLogoffToRWS=0

    ReplyToAuth=0

    UseSNT=0

    Image=images/AppIcons/GenericHTTP.gif

    SSLVpnTemplate=GenericRelaySilent

    SSLVPNNumOfElements=2

    SSLVPNElement0ID=0IPBIND

    SSLVPNElement1ID=0

    0IPBINDName=Server:

    0IPBINDType=0

    0IPBINDGuiType=0

    0IPBINDValidation=IP/DNS NotEmpty

    0Name=Port:

    0Type=1

    0GuiType=1

    0Value=

    0Validation=Port

    ActivateSmugglingProtection=0

    MaxHTTPBodySize=49152

    ContentTypeList=application/x-www-form-urlencoded|multipart/form-data

Phase 2: Activate configuration with "Apply changes made to external configuration settings"

  1. Choose "Apply changes made to external configuration settings" when activate configuration

Phase 3: Select the custom Client/Server Application you created

  1. In the Application section of you Trunk / Portal, click "Add"
  2. Go to "Browser-Embedded App"
  3. Choose the custom template your created "Generic Browser-Embedded App-Silent "

Thank you very much for reading this article

If you have any issues with this custom template please go to our Technical Forums site http://Forums.ForefrontSecurity.ORG or use our online support services

powered by metaPost

print
rating
 Comments