NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.
Forum Discussion
How to disable SSO login?
Hi here! I'm happy owner of Netgear WAC124 access point. Firmware Version V1.0.4.4 When setup first time I've created netgear account and registered the product. But on next logins it always re...
If you disconnect the WAN port you can access the WAC124 via IP address.
Unfortunately, this is not helpful if you are trying to remote admin the AP from an outside network.
We have had 33% of the WAC124 units we've deployed slow down and then have the web GUI become inaccessible. Is reminiscent of when Asus was having its router hacked. We had several of those become hacked and exhibit similar behavior.
Currently, when logging via SSO, we are told the server reloads and then the web page fails. Problems on Netgear's end? We use the 10G switches in video production environments but these APs are just a bunch of garbage.
For anyone still looking into this, I have found a partial solution.
The router login page is sso.html
There are 3 possible login forms:
1. The local login (what you want)
2. The first time login (when you first power on the router)
3. The Internet SSO Netgear login (yuck)
All 3 of these forms are actually on the login page, sso.html, the others are simply hidden.
The way the page determines which login form is shown, is a page-level JavaScript variable called "hasInternet". The value is set internally by the firmware and is baked into the page source. The value changes constantly and is some sort of time/date format like "418:33:34". I'm not sure what this time is indicating.
Anyways, if the "hasInternet" has a value of "00:00:00" that means the router has internally determined you don't have internet access. In this case, the page simply uses JavaScript to hide the SSO login form and display the Local Login form.
I'm not sure if there is a way to trick out the AP to change that "hasInternet" value. Maybe with firmware hacking. I dunno.
BUT you can use simple JavaScript on the page to hide/show the login login form and ignore the SSO login form.
SSO login form HTML div element ID: "box_internet_everlogon"
Local login form HTML div element ID: "box_local_login"
So if you open up the browser dev tools and goto the JavaScript console you can use the following Javascript
(function(){ document.getElementById('box_local_login').style.display='block'; document.getElementById('box_internet_everlogon').style.display='none'; })()Just copy and paste that in and run it.
TADA: Now the SSO login is gone and the Local login is accessible and ready to accept input.
So how can we make this a little more accessible? A pain to open up the console and copy/paste this thing every time you login right? How about a browser Bookmarklet?
In your browser create a new Bookmark. Give it any name, like "Netgear Local Login" or whatever you want. For the URL paste in the following Javascript:
javascript:(function(){ document.getElementById('box_local_login').style.display='block'; document.getElementById('box_internet_everlogon').style.display='none'; })();For some reason Netgears Message Board is replacing the "colon" in the above code with the HTML colon entity code ":". Anyways it should look like this at the start:
Now, whenever you get to your Netgear AP SSO login page, click on their bookmark. The JavaScript in the bookmark will execute and you will now magically have your local login instead of the stupid Netgear SSO login.
There may be other ways of automating this, such as a Chrome/Firefox extension that automatically can execute custom JavaScript whenever you access certain URLs. Or something to automatically open the Bookmarklet when you get to this URL. I haven't really looked deeper into it beyond this.
This isn't a perfect solution, but I hope it helps everyone. Netgear should really not require SSO logins for local network devices. Really really dumb idea.
Jakobud wrote:For anyone still looking into this, I have found a partial solution.
The router login page is sso.html
There are 3 possible login forms:
1. The local login (what you want)
2. The first time login (when you first power on the router)
3. The Internet SSO Netgear login (yuck)
All 3 of these forms are actually on the login page, sso.html, the others are simply hidden.
The way the page determines which login form is shown, is a page-level JavaScript variable called "hasInternet". The value is set internally by the firmware and is baked into the page source. The value changes constantly and is some sort of time/date format like "418:33:34". I'm not sure what this time is indicating.
Anyways, if the "hasInternet" has a value of "00:00:00" that means the router has internally determined you don't have internet access. In this case, the page simply uses JavaScript to hide the SSO login form and display the Local Login form.
I'm not sure if there is a way to trick out the AP to change that "hasInternet" value. Maybe with firmware hacking. I dunno.
BUT you can use simple JavaScript on the page to hide/show the login login form and ignore the SSO login form.
SSO login form HTML div element ID: "box_internet_everlogon"
Local login form HTML div element ID: "box_local_login"
So if you open up the browser dev tools and goto the JavaScript console you can use the following Javascript
(function(){ document.getElementById('box_local_login').style.display='block'; document.getElementById('box_internet_everlogon').style.display='none'; })()Just copy and paste that in and run it.
TADA: Now the SSO login is gone and the Local login is accessible and ready to accept input.
So how can we make this a little more accessible? A pain to open up the console and copy/paste this thing every time you login right? How about a browser Bookmarklet?
In your browser create a new Bookmark. Give it any name, like "Netgear Local Login" or whatever you want. For the URL paste in the following Javascript:
javascript:(function(){ document.getElementById('box_local_login').style.display='block'; document.getElementById('box_internet_everlogon').style.display='none'; })();For some reason Netgears Message Board is replacing the "colon" in the above code with the HTML colon entity code ":". Anyways it should look like this at the start:
Now, whenever you get to your Netgear AP SSO login page, click on their bookmark. The JavaScript in the bookmark will execute and you will now magically have your local login instead of the stupid Netgear SSO login.
There may be other ways of automating this, such as a Chrome/Firefox extension that automatically can execute custom JavaScript whenever you access certain URLs. Or something to automatically open the Bookmarklet when you get to this URL. I haven't really looked deeper into it beyond this.
This isn't a perfect solution, but I hope it helps everyone. Netgear should really not require SSO logins for local network devices. Really really dumb idea.
Sweet thanks!!!
This trick allows to enter the login password, but this ends in smetime a forbidden, or just the same redirect to sso page...
thanks anyway but it seems they disabled the hack
Very nice and "workable" solution :-)
Netgear could easily change the sso.html in the firmware (with a simple firmware-update) to give the user the requested CHOICE between the local sign-on and the unwanted "Netgear-SSO", but I guess they don't want to, or they would have allready :-(
As you suggested, I created the "javascript-push" in a bookmark right below the boomark I use to go to the logon page of the router en now I can reasonable easy choose the local logon by using that bookmark right after "surfing" to the Netgear-SSO.But I also agree with some of the other responders to the original question. The WAC124 will be the last Netgear-product I buy...
NETGEAR Academy
Boost your skills with the Netgear Academy - Get trained, certified and stay ahead with the latest Netgear technology!
Join Us!
