Forum Discussion

Cirrus

Apr 28, 2020

No CAPTCHA - URL is not yet qualified for challenge injection

Hi, I am setting up Brute Force protection in ASM and have noted that I can get this drop traffic and alert, but when attempting to show the CAPTCHA, I only get the blocking page we have config...

Employee

May 05, 2020

Does your /LoginHere.aspx contain HTML tag in response?

It must include HTML tag to be qualified. If this is so, then you need to send 10 requests to /LoginHere.aspx (no need to login), after that URL should be qualified for challenge injections.

Thanks, Ivan

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

No CAPTCHA - URL is not yet qualified for challenge injection

F5 Academy at AppWorld 2026

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

Connection Rest f5

Kubernetes cert-manager + LetsEncrypt + F5

The GSLB pool is providing an incorrect IP to end users

Unable to ping from some self ip on Velos

Not seeing the latest F5OS-A when running Journeys

Related Content

WAF evasion techniques for Command Injection

Mobile Security: Current Challenges & A Vision For The Future

Breaking Down the Quantum Challenge: Why Post-Quantum Cryptography Can't Wait

Serverside SNI injection iRule

BIG-IP Next for Kubernetes, addressing today’s enterprise challenges

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS