Case of use of AWAF to protect APM
Hi Community,
Today I would like to open this post to talk about the use of AWAF to protect APM, I know some cases of use for this integration but I would like to receive some suggestions based on your experience and expose an interesting guide to make different integrations.
What do you think? do you have any idea of a case of use different to:
* Use ASM to protect against attacks of brute force on the login page of the APM portal.
for more information relative to this integration follow this link: https://my.f5.com/manage/s/article/K54217479, it works really well and enables us to show a captcha to the customer, but take in mind that we have to configure really low thresholds in the brute force protection because APM has their own limit of logins.
*Use the APM+ASM to protect APIs.
*Apply Bot defense in the ASM layer to protect APM.
*General attack signatures protection in the front of the ASM for the APM portal.