Configure a banner to display messages to users when they connect to the device command line interface (CLI). This helps inform users and discourage unauthorized access.
Procedure
Step 1 | Choose and create or edit the Firewall Threat Defense policy. |
Step 2 | Select Banner. |
Step 3 | Configure the banner.
These are some tips and requirements for banners.
-
Use only ASCII characters. You can add line returns (press Enter), but do not use tabs.
-
You can dynamically add the hostname or domain name of the device by including the variables $(hostname) or $(domain) .
-
Although banners do not have an absolute length restriction, Telnet or SSH sessions close if the system does not have enough memory to process banner messages.
-
Create a banner that discourages unauthorized access by avoiding the words "welcome" or "please," which may seem inviting. The sample banner provided discourages intruders.
You have logged in to a secure device.
If you are not authorized to access this device,
log out immediately or risk criminal charges.
|
Step 4 | Click
Save.
You can now go to and deploy the policy to assigned devices. The changes are not active until you deploy them.
|
The system displays the banner to users when they connect to the device CLI. The changes occur after you deploy the policy.