Forum Discussion

THE_BLUE's avatar
THE_BLUE
Icon for Cirrostratus rankCirrostratus
3 years ago
Solved

Audit WAF changes

I have many users accessing WAF and i need to audit all what they are doing example if any one make change in learning and blocking settings or in virtual server configration. Is there any way to do ...
AlexBCT's avatar
AlexBCT
Icon for Cumulonimbus rankCumulonimbus
3 years ago

Hi, 

Have you seen the ASM Audit log? (Security ›› Application Security : Audit : Log - This is the path in v16.1, in earlier versions, I believe you can find it under the History section)

This will contain the changes made, their username etc. 

See here an example of one of my policies; 

Hope this helps. 

  • arnora's avatar
    arnora
    Icon for Nimbostratus rankNimbostratus
    2 years ago

    Hi - I have benn using these logs alot - but have recently upgraded to 17.1 - does anyone know where those logs are now - I can't find them anymore ?

    • AlexBCT's avatar
      AlexBCT
      Icon for Cumulonimbus rankCumulonimbus
      2 years ago

      They've indeed moved it around a bit in v17.1. You can now find it under the Security Policy section, see the screenshot below; 

      Hope this helps. 

       

      • arnora's avatar
        arnora
        Icon for Nimbostratus rankNimbostratus
        2 years ago

        Thank you - and I was so sure I had searched everywhere 🙂