Forum Discussion

Nimbostratus

Aug 03, 2020

ASM best practice to allow \\ in new sec-ch-ua header

Hello, Recently some of our developers have upgraded to msedge dev then beta, and these browsers (and maybe more chromium based browsers in dev/beta mode) are adding a specific Brand in the sec...

ASM Advanced WAF

security

Ivan_Chernenkii

Employee

Aug 06, 2020

Hello,

As I see, current workaround is pretty good. Also, you can disable only "Url Normalization" for "sec-ch-ua" header - it should be enough.

Thanks, Ivan

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

ASM best practice to allow \\ in new sec-ch-ua header

F5 Academies Are Back – And We’re Coming to a City Near You

Introducing the F5 Application Study Tool (AST)

Recent Discussions

About F5 idle timeout and keep-alive

Problem with sending BotDefense logs to remote server

OSPF traps on BIG-IP v14

[APM] - How to clear the cached certificate for specific url

Fireeye AX integration with F5 via API.

Related Content

AS3 Best Practice

Five Ways to Automate F5OS with Ansible: A Practical Guide

F5 Certified Practice Exams

ASM: Header 'sec-ch-ua' has no value

Cipher Suite Practices and Pitfalls

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS