Forum Discussion

Nimbostratus

Nov 06, 2023

Guided Configuration on API security

Hi Folks, We are using ASM module for some time and there are many application security policies that are in block mode. We have some api related application in our environment, now wanted to prot...

application delivery

security

Daniel_Wolf

MVP

Nov 07, 2023

Hi kkuzhal,

the guided configuration for AWAF API protection offers two variants.
1. You have an OpenAPI Specification (formerly Swagger Specification)
2. You don't

If you have, it will allow only the specified API endpoint and methods. If you don't, you have to specify them manually. That's pretty much it.

I like API Protection with APM better, because it includes authentication and rate limiting.

KR
Daniel

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

Guided Configuration on API security

Recent Discussions

Upgrade F5 BIGIP

DNS HM Probe issue

Is XFF a must for ASM WAF DoS

Switch ssl profile based on weak cipher detection via IRULE

F5 Switches in 'Changes Pending' Status

Related Content

Implementing SSL Orchestrator - Guided Configuration

Secure against the OWASP Top 10: Guide for 2021

Demo Guide: F5 Distributed Cloud DNS (SaaS Console)

Auditing Security Policy Updates

Demo Guide: Multi-Cloud Networking with F5 Distributed Cloud Services (SaaS Console, Automation)

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS