Forum Discussion

Altostratus

May 13, 2015

Enforce in blocking mode

Hi experts, we have put a security policy on ASM on ver 11.5.1 in blocking mode. When I go to Overview > Application > Action items > suggested action items, I do see it suggesting that URLs/Cookies/...

ASM Advanced WAF

security

gsharri

Altostratus

May 13, 2015

If you built the policy automatically using the Policy Builder and the policy builder is still enabled for this security policy then yes the items you mention would be enforced (otherwise known as "take out of staging") automatically.

However, if the policy was created manually or the automatic builder has been disabled then you must manually enforce these items.

This allows you to have a security policy in blocking mode and add new entities in staging giving you time to test for false positives.

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)