Mar 27, 2026 - For details about updated CVE-2025-53521 (BIG-IP APM vulnerability), refer to K000156741.

Forum Discussion

davidfisher's avatar
davidfisher
Icon for Cirrus rankCirrus
May 26, 2019

DOS profile blocks postman query and nothing shows in logs

Hi DEVs!   I am running 13.1.0.7.   When using postman to test a ldap auth, I get an error "required javascript" along with a support ID.   This only happens when enabling the dos protection ...
LTM
security
Simon_Blakely's avatar
Simon_Blakely
Icon for Employee rankEmployee
May 26, 2019

The dos profile is inserting a javascript challenge into the response - if the client does not support javascript (like Postman), you see the HTML text containing that message.

 

Although this may just be an issue with the Postman response preview ...

 

Disable any features in the DoS profile that rely on Javascript

- Proactive Bot Defense

- Client Side Integrity Defense

 

  • davidfisher's avatar
    davidfisher
    Icon for Cirrus rankCirrus
    May 26, 2019

    I should have added above.

     

    • Why is there no log for the support id being generated
    • And also the dos events logs tab is completely blank.