Responsive (Mobile Friendly) Authentication Forms for Microsoft Forefront TMG
Switch branches/tags
Nothing to show
Clone or download
Fetching latest commit…
Cannot retrieve the latest commit at this time.
Permalink
Failed to load latest commit information.
TMGResponsiveAuthForm
.gitignore
README.md
TMGResponsiveAuthForm.zip

README.md

Forefront TMG Responsive Forms Based Authentication Templates

Forms based authentication templates for Forefront TMG to make logging in easier on mobile devices.

#Purpose

This project contains a set of custom templates you can use when publishing websites using Forefront TMG and Forms Based Authentication. These templates are fully responsive to provide a nicer experience when logging into your secured sites using a smart phone or tablet.

This default form Default Forefront TMG Forms Authentication on iPhone becomes Responsive Forefront TMG Forms Authentication on iPhone

The form also scales nicely for tablets and normal desktops / large screens.

Responsive Forefront TMG Forms Authentication on Desktop

There is also a template for Exchange OWA, both with and without the Exchange 2013 style. Here's the Exchange 2013 template:

Forefront TMG Forms Based Authentication Template for Exchange 2013 - Desktop

Forefront TMG Forms Based Authentication Template for Exchange 2013 - Mobile

#Installation

  1. For Outlook Web Access, copy the existing Exchange Templates folder on your Forefront TMG Server at: C:\Program Files\Microsoft Forefront Threat Management Gateway\Templates\CookieAuthTemplates\Exchange

    For all other sites, copy the existing ISA Templates folder at: C:\Program Files\Microsoft Forefront Threat Management Gateway\Templates\CookieAuthTemplates\ISA

  2. Call the duplicated folder 'Custom' (or whatever takes your fancy). You should now have a folder here: C:\Program Files\Microsoft Forefront Threat Management Gateway\Templates\CookieAuthTemplates\Custom

  3. Copy all files under the HTML folder of your desired template (either ISA, Exchange or Exchange2013) in this project into the corresponding HTML sub-folder of your Custom Folder and replace the existing files. For example, copy all files from Exchange2013\HTML into your Custom\HTML folder. Use either of the Exchange templates for OWA, and the ISA versions for everything else.

  4. Feel free to replace Logo.png with your own custom logo, but you may also need to edit the size attributes of the image tag in the usr_pwd.htm file to match the dimensions of your logo. This is the tag to look for (set width and height appropriately): <img src="/CookieAuth.dll?GetPic?formdir=@@FORMDIR&image=Logo.png" width="369" height="65" alt="Logo">

  5. In your TMG Management console, edit your desired Web Publishing rule and go to the Listener page. Click Properties.

  6. On the Authentication tab, ensure HTML Forms Authentication is selected.

  7. On the Forms tab enter 'Custom' (you don't need to enter the entire path, just the word 'Custom' (or whatever you specified in step 2) without the quotes).

  8. If you used the Exchange Publishing Wizard in Forefront TMG, you also need to go to the Application Settings tab and enter 'Custom' (or whatever you specified in step 2) in the 'Type the custom HTML for set directory' edit box.

  9. Apply the changes.

  10. Restart the TMG Firewall Service (yeah, I know... Unfortunately TMG Caches these pages and restarting the service is the only way to clear it as far as I know).

Browse to the site and Forefront TMG will present the new authentication page. Try it on a smart phone or tablet and marvel at its beauty.

#Issues

Due to popular demand, I have now customized all forms in the Exchange2013 folder including the Change Password form, and the forms used for Radius and SecureID. However in the other two folders (Exchange and ISA), only the usr_pwd.htm file has been customized. This file is served only when using Windows (Active Directory) authentication (set on the Authentication page in step 5 above).

If you're using Radius or SecureID and prefer to use the ISA or non-2013 Exchange forms, feel free to contribute to the project! :) Otherwise, I'll get to them when I can.

#Credits

  1. Responsive goodness is provided mainly by the scaffolding and forms components in bootstrap
  2. The inspiration for this project came from a web development request from Etienne Liebetrau of Fix My IT System
  3. Thanks to Richard Hicks and Will Smothers for their testing of the Exchange 2013 template.