Forum Discussion

Nimbostratus

Jul 24, 2018

disable 'bad unescape' for particular URL

I have a question here. There is a false requests that we want to allow. If I accept the suggestion, it will disable “bad unescape” under Evasion technique detected. However, I would like to only allow the whitelist of the URL “/admin/password/change” instead of disable “bad unescape”? Is it possible for me to achieve my goal?

ASM Advanced WAF

security

nathe
Cirrocumulus
Jul 26, 2018
John, afraid not. One option is to edit your local traffic policy and direct traffic to the admin URL to a new policy with the violation disabled.

Hope this helps,

N