Forum Discussion
export "ready to be enforced" signature list
- Aug 03, 2023
Not to use the GUI, I found the other method to list the "ready to be enforced" signatures
This is the way to do with iControl:
restcurl -u admin:[password] "/tm/asm/policies/[Policy ID]/signatures?\$select=&\$filter=enabled+eq+true+and+performStaging+eq+true+and+wasUpdatedWithinEnforcementReadinessPeriod+eq+false+and+hasSuggestions+eq+false+and+inPolicy+eq+true"
with this API call, signature IDs can be listed.
Enforcement readiness is a per-policy behavior.
Easiest way to find it will be in the GUI: move to Security > Policies > Policy List > (policy name) > Attack Signatures menu, and filter Status: Ready to be enforced.
Or, in older versions, move to the Application Security > Attack Signatures menu, select the intended policy from the drop-down menu, then expand the Advanced Filter and select "Ready to be enforced" for Staging.
This method does not allow you to export the list, sadly.
You can check this thread however, where the pinned answer is a script that automates policy installation and it uses the API functions of the BIG-IP to query it for the enforcement-ready entities of every policy.
It will require some tuning but it's a very good start IMO.
Recent Discussions
Related Content
* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com