Hide "Login with Windows Credentials" on the Login Page for Non-Windows Devices
- 19 Jan 2023
- 1 Minute to read
- Print
- DarkLight
Hide "Login with Windows Credentials" on the Login Page for Non-Windows Devices
- Updated on 19 Jan 2023
- 1 Minute to read
- Print
- DarkLight
Article summary
Did you find this summary helpful?
Thank you for your feedback
Hide the "Login with Windows Credentials" Button
RapidIdentity supports Kerberos Authentication for users with domain joined Windows devices that enables them to login to RapidIdentity by simply clicking the Login with Windows Credentials button on the Login Page.
The button appears on the login page as soon as Kerberos Authentication is enabled in RapidIdentity.
Enabling Kerberos Authentication
Tenant Administrators can enable Kerberos Authentication in RapidIdentity by going to Configuration > Policies > Authentication and selecting Kerberos from the left navigation menu.
To use Kerberos Authentication, Tenant Administrators simply add the Kerberos Authentication Method to an Authentication Policy in the same configuration area.
When enabled, the button appears for all users regardless of their device. Tenant Administrators can hide the button from users with non-Windows devices such as iPads or Chromebooks by following these instructions:
- Navigate to Configuration > Security > Identity Providers.
- Select Web Template from the left navigation menu.
- Check the Enable Custom HTML (Advanced) checkbox.
- Copy & Paste the following code into the Custom HTML input area:
<script language="JavaScript">
function waitForElm(selector) {
return new Promise(resolve => {
if (document.querySelector(selector)) {
return resolve(document.querySelector(selector));
}
const observer = new MutationObserver(mutations => {
if (document.querySelector(selector)) {
resolve(document.querySelector(selector));
observer.disconnect();
}
});
observer.observe(document.body, {
childList: true,
subtree: true
});
});
}
function tailorKerberos() {
if (navigator.appVersion.indexOf("Win")==-1) {
console.log("OSName is not Windows, hiding button");
waitForElm('#authn-kerberos-wrapper')
.then((elm) => {
elm.style.display = 'none';
});
}
};
document.addEventListener('DOMContentLoaded',tailorKerberos());
</script>
- Click the Save button on the bottom Action Menu and then click the Trigger Web Reload button to update the Login Page.
Note
This update will apply to all users as soon as the Trigger Web Reload is complete.
Customers are advised to test immediately after applying this change to ensure that Windows device users see the Login with Windows Credentials button while users on non-Windows devices do not.
To revert this change, simply un-check the Enable Customer HTML (Advanced) check box on the IdP Web Template then click the Save button followed by the Trigger Web Reload button to update the Login Page.
Was this article helpful?