Forum Discussion
seilemor_131269
Altostratus
AltostratusASM settings wihtin Sharepoint 2013 template
Hey,
I'm at the beginning of my ASM career and need your help to understand something.
To publish a Sharepoint installation, I've created the LTM and ASM settings with the neweset iApp temp...
seilemor_131269Altostratus
AltostratusHey Hannes,
there are entrys for example like "/_layouts/.aspx", "/_layouts/inc/.png" or "/sitepages/". In summary there are 86 URL's.
What are your think what I should do in this case!? Deleting the wildcard from the categroies!?
As additional info; within the settings of "policy building" there are at each categorie the option "Never (wildcard only)" selected. Is this the reason for the wildcard? For some weeks I've played a little bit around with these settings. Regarding the selected option within the settings of policy building the wildcard has been added or not.
- Hannes_Rapp
Nimbostratus
As additional info; within the settings of "policy building" there are at each categorie the option "Never (wildcard only)" selected. Is this the reason for the wildcard? - Yes, that's why you have the wildcard entry on top of explicit entries. What should you do? I think in your case, there's no reason to go with the wildcard setting (permit all URLs) since someone has done a lot of work to map out all the legitimate URLs for this particular application. Try it out for a week, and if the mapped URLs cover everything as expected, go with the strict setup where only a specific set of URLs are allowed. As you mentioned, you're just starting out with ASM. I would recommend having a look at ASM management article series by John Wagnon (2-3 hours read): https://devcentral.f5.com/articles/the-big-ip-application-security-manager-part-10-event-logging Good luck! - seilemor_131269Ok - thank you very much for your help. I'll delete the wildcard entrys and will take the time to read the article. While googling around this topic I already found this article :)
