We've been doing this for a while now. Download the sample sign-in page files. Open LoginPage.thtml and create an Acceptible Use page, using HTML. You can get rid of all the login forms and start from scratch. You just need to include two things. The header: <%# NetScreen Page Version 1002 %> (this will change from version to version, so you need to update the file each time) And a pointer to the login page, eg. <input onClick="location.href = '../../../login'" tabindex=1 type=button value=" I Agree "> notice the '../../..', this is to bring you back to the proper URL location from dana-na/auth/...etc. Zip everything back up and upload. When you upload the custom page, I would check "skip validation checks" I create two sign-in policies. The first for */ will have the custom AUP as the sign-in page. The second will be a */login that will use the default login page. When the user clicks on the "accept" button, they are redirected to https://yoursite.com/login For added security, I create a NULL auth-realm with no role mapping. I use this NULL realm for the AUP sign-in policy. We go one step further and created a choice page that lets users choose full access or just OWA email for ease and speed. Ed Bradshaw ... View more