Forum Discussion

Altocumulus

6 years ago

Brute force protection for an API endpoint (no login page)?

Hello, Configuring Brute force protection entails declaring the login page(s).. Is it possible to use this protection on a site where every page is a login page, in a sense? It's an API endpoint and...

ASM Advanced WAF

security

Mohamed_Lrhazi

Altocumulus

6 years ago

Thanks KR. Indeed it work fine. Just declare /* as a login page.

Dario_Garrido

Noctilucent

6 years ago

Glad to hear this!

Please, if my answer was helpful, don't forget to mark it as "the best" or give me some upvotes.

KR,

Dario.

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

Brute force protection for an API endpoint (no login page)?

AppWorld Berlin iRules Contest!

F5 AppWorld 2026 Las Vegas - iRules Contest Winners!

Recent Discussions

VIP control across data centers - how to ensure only 1 VIP is up at a time?

FQDN Node Configuration

Logical Disk Full to Migrate rSeries

Priority Group Activation is not working

Changes to DO and AS3 GitHub - no longer monitored

Related Content

Poor Man's WAF for AI API Endpoints

Embedding APM Protected Resources into Third-Party Sites

L7 DoS Protection with NGINX App Protect DoS

Apache Airflow Unsafe API Endpoint

Cisco ACI Endpoint Learning with a BIG-IP HA Failover

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS