The triton console can be accessed by all users through the appliance C interface.
This is something which is done by design. (we had a case open for this)
There are a few options to prevent users from accessing this site, but they are mostly based on client settings.
This allows users to open and possible login to the Triton console.
This is seen as a security issue, because it is possible to perform Cross site scripting attacks, and exploit possible vulnerability's which exist in the software.
We want to be able to control, which clients can connect to the triton console (possible with an ACL)
or even disable access to the C interface completely and only allow direct access.