Mar 27, 2026 - For details about updated CVE-2025-53521 (BIG-IP APM vulnerability), refer to K000156741.

Forum Discussion

Icon for Altostratus rank

Altostratus

Jun 12, 2019

CSRF Protection makes application inaccessible from Chrome

We have enabled ASM recently. If I enable CSRF Protection, the site becomes inaccessible from chrome but works fine from IE. When disabled, site loads perfectly fine. I could not find any logs under ...

application delivery

ASM Advanced WAF

Niels_van_Sluis

Icon for MVP rank

MVP

Jun 13, 2019

The CSRF protection inserts javascript. Is javascript enabled in the chrome browser? Check: chrome://settings/content/javascript

If enabled, you can also open developer mode (F12) and take a look at the console. Maybe this will help you the find the cause of the problem. You can also use a tool like fiddler and make both a trace when accessing the site form IE and Chrome. Then compare those two traces.

smalex
Altostratus
Jun 13, 2019
Java script is enabled.

Jonathan - March 2026 Featured Member

DevCentral News

featured member

F5 AppWorld 2026 Las Vegas - iRules Contest Winners!

DevCentral News

2026 F5 DevCentral MVP Announcement

DevCentral News

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5