Forum Discussion

Nimbostratus

Sep 16, 2009

managing signatures

Hey everyone, I'm trying to find a way to manage our signatures better, because the way I'm currently trying to do it seems wrong. Background: We currently have 2 signature sets we use...

app sec

BIG-IP Access Policy Manager (APM)

security

Vladimir_Sheyda

Historic F5 Account

Sep 22, 2009

Hi Paul,

You can disable signatures that generate false positives on Policy level. There is no need to remove them from signature sets. Simply go to ASM GUI -> Attack Signatures -> Policy Attack Signatures. There will be a filter there so you can find signatures that you want to disable by signature ID and then uncheck the Enabled check box for the signatures you want disabled. You can also disable them through learning.

Let me know if this helped.

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

managing signatures

F5 Academy at AppWorld 2026

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

How can I get started with iCall

Connection Rest f5

Kubernetes cert-manager + LetsEncrypt + F5

The GSLB pool is providing an incorrect IP to end users

Unable to ping from some self ip on Velos

Related Content

Automating Certificate Management on F5 BIG-IP

November Security Research Update: Newly Released Attack Signatures

Automating ACMEv2 Certificate Management on BIG-IP

NGINX App Protect v5 Signature Notifications

Managing Model Context Protocol in iRules - Part 3

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS