For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

Icon for Altostratus rank

Altostratus

Jun 13, 2019

CSRF Protection makes application inaccessible from Chrome

We have enabled ASM recently. If I enable CSRF Protection, the site becomes inaccessible from chrome but works fine from IE. When disabled, site loads perfectly fine. I could not find any logs under ...

application delivery

ASM Advanced WAF

Niels_van_Sluis

Icon for MVP rank

MVP

Jun 13, 2019

The CSRF protection inserts javascript. Is javascript enabled in the chrome browser? Check: chrome://settings/content/javascript

If enabled, you can also open developer mode (F12) and take a look at the console. Maybe this will help you the find the cause of the problem. You can also use a tool like fiddler and make both a trace when accessing the site form IE and Chrome. Then compare those two traces.

smalex
Altostratus
Jun 13, 2019
Java script is enabled.

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)

F5 Academy at AppWorld 2026

DevCentral News

Introducing the F5 AI Assistant for BIG-IP

Technical Articles

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5