This information is for the legacy user portal only. You cannot block the default user portal.
The user portal page provides the following information about a logged-in user:
Any federations this user has established with third-party service providers
Identity attributes such as Liberty Personal or employee profile attributes, Access Manager credential, or custom profile attributes
Policy attributes that users or administrators have selected to share with other service providers
You might want to prevent users from seeing this page for the following reasons:
Security: Users accessing this page have access to sensitive information that administrators might want to restrict, such as the user’s attributes and federations with other third-party SAML or Liberty providers.
Help Desk Support: Most users do not need to access this page. They might be confused if they see it. By preventing access to the page, any potential calls into the help desk are avoided.
When the legacy mode is enabled, all user login pages use the legacy UI. However, Access Manager issues the URL/nidp and shows the portal page at several places. This is because index.html for the nidp webapp contains a redirect from /nidp to /nidp/portal.
To block the legacy user portal page:
Ensure that you create the WEB-INF/legacy directory. See Logging in with the Legacy Customized Portal.
As a system administrator, edit the /webapp/index.html file.
Change the line <meta http-equiv="refresh" content="0; URL=portal"> to <meta http-equiv="refresh" content="0; URL=app">.
Save the /webapp/index.html file.
Now, the legacy user portal can be accessed by entering the URL in the browser of /nidp/portal.