ASM Learning Fine Tuning (illegal meta characters in value)
Hello Experts
My ASM policy is in transparent mode and configured as manually that is through wildcards for URL, Parameters and file types.
I am getting violations "illegal meta characters in value". Attached is snapshot.
1- How to fine tune this? 2- If I accept learning suggestions, these illegal meta characters would be accepted for wildcard parameters or particular learned parameters? Because in violations, it is not mentioning "which parameter" got "illegal meta character in value" 3- What does it means "Disallowed" and "Allowed"? 4- Also if I go to meta character settings under any particular learned parameter or wildcard parameter, there is something Global policy settings for meta character, From where this settings came?
Regards,
GR
Hi,
- You must decide wich meta characters is allowed for the parameters.
- If you accept suggestion for wildcard parameters illegal meta characters would be accepted for all parameters but not for particular learned parameters.
- Allowed: Specifies that the character or meta character can occur in parameter values. Disallowed: Specifies that the character or meta character can not occur in parameter values.
- This settings came from /Security/Application Security/Parameters/Characters Sets