Forum Discussion

swo0sh_gt_13163's avatar
swo0sh_gt_13163
Icon for Altostratus rankAltostratus
Aug 05, 2015

F5 ASM - Policy Builder to Manual Configuration.

Hello Folks,

 

We have deployed approximately 8 ASM policies using the Policy Builder, however now we want to change all the Policies from Policy Building to Manual configuration mode.

 

Is there a way to verify how many policies are configured using the Policy Building and how can we migrate the same to Manual Configuration Mode (with minimal traffic interruption).

 

Thank you, Darshan

 

  • Yes, got that Nathan... Thank you for your help!! Much appreciated!!

     

    Regards, Darshan

     

  • Go to Security ››Application Security : Security Policies : Policies Summary There you can see statistics about learned with PB enabled and learned with PB disabled. with PB disabled means you have manually added parameter or file type or other and enforced it, or you just enforced it manually but was put in staging by Policy Builder.

     

  • nathe's avatar
    nathe
    Icon for Cirrocumulus rankCirrocumulus

    Darshan,

     

    You can turn off the Automatic Policy Builder per policy in the Automatic Policy Builder settings page. It's just a tick box.

     

    Once you've done this you're in manual mode and anything that the Policy Builder has not completed will need to be looked at by yourself. E.g. there may be items in Staging that you many want to Enforce.

     

    Hope this helps,

     

    N