Whitelisting image types for uploading custom images

To prevent unrestricted upload of image files for customizing the login dialog MVMA as of MVMA 9.1.00.B implements a whitelist of image types to be accepted for this operation.
Product administrators can configure and adjust the installed default whitelist as needed.

To configure the whitelist of image types:

• backup the configuration file com.bmc.mmadmin.admin.resources.properties located in the sub-directory configuration/services of the MVMA installation directory.
• edit the configuration file com.bmc.mmadmin.admin.resources.properties.
• set the property iconsWhiteList to a comma-separated list of image types to be accepted for uploading custom images, optionally add a MIME type to further restrict a selected image type.
• save the changes made to the configuration file.
• restart MVMA for the changes to take effect.

Example:

The types of images permitted by default whitelist are bmp, gif, jpeg, png, jpg, svg, and ico per icon.