ASM Policy Building with Trusted User and Redirection Domains

Question

Existing policy that is aged past staging period.  Policy building was recently changed from manual to automatic.  Setup a trusted user in IP exception.  Hit a domain associated with policy with trusted user.  After testing, found illegal request triggered for illegal redirection.  Was not automatically added despite being offered as a trusted user. Nor was it even offered as a learning suggestion.&nbsp;
Should the policy automatically updated the domain as allowed for redirection as trusted user triggered?&nbsp;

samstep · Answer

It is difficult to say why it was not added by the automated policy builder, perhaps the Learn settings was set on 'Never' in the Manual policy?&nbsp;
https://support.f5.com/kb/en-us/products/big-ip_asm/manuals/product/asm-implementations-11-6-0/17.html&nbsp;
You can always create the allowed redirection domain manually.&nbsp;

Forum Discussion

ASM Policy Building with Trusted User and Redirection Domains

Recent Discussions

NetScaler to F5 Migration

LTM Rule, iRule, or Brute Force Configuration to Limit URL Access

Application only need to access from 2 uris

In Radius auth, how to allow second attempt of token input when the first input is incorrect?

AS3 Limitations

Related Content

Zero Trust building blocks - Machine Identity Management (MIM) and Workload Protection

Zero Trust building blocks - Leverage Microsoft Intune endpoint Compliance with F5 BIG-IP APM Access

Building Trust with Service Mesh

Building a lab using Proxmox

Zero Trust building blocks - F5 BIG-IP Access Policy Manager (APM) and PingIdentity

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS