Enabling custom attack signature only on one security policy

Question

Hello Everyone, &nbsp;
We have two dozens of security policies on our F5 ASM. Frequently we need to create application specific attack signature, however when we do it, new signature is set to Enabled on all remaining security policies. It takes between half an hour and hour to go into all remaining policies and disable this new signature. As you imagine this is very cumbersome and time wasting process.&nbsp;
Do you have any workaround to recommend?&nbsp;
By the way, we are running 11.6.1.&nbsp;
Thank you.&nbsp;

samstep · Answer

Simply don't assign the newly created user-defined signature to any systems/technology! &nbsp;
Once you have the attack signature in its own own custom signature set you can easily assign/unassign your App1/App2 signature sets from individual policies&nbsp;

Forum Discussion

Enabling custom attack signature only on one security policy

Recent Discussions

BIG-IP Oauth Client and AS

F5 BOT DEFENSE AWAF blocked some legitimate browsers

Advice to partial rename uri path

In Radius auth, how to allow second attempt of token input when the first input is incorrect?

Submenus missing in ASM Security Tab

Related Content

Positive Security vs. Negative Security: A Comparison Using F5's Security Portfolio

AppWorld 2025 Security Insights - ADC 3.0, AI Security, and more

Securing Model Serving in Red Hat OpenShift AI (on ROSA) with F5 Distributed Cloud API Security

F5 AI Gateway - Secure, Deliver and Optimize GenAI Apps

captcha not show after enable header security

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS