Forum Discussion

MVP

Jan 16, 2025

Re: TMSH Command to list ASM policies not attached to any virtual servers in all partitions

For such tasks I have a script framework for the F5 REST-API named restsh. Unfortunately I can not share it, but this is a snippet to solve your demand:

F5_URI="https://<f5-mgmt-ip>"
alias GET="curl -k -s --fail -u "<user>:<pass>"

while read -r POLICY_ID
do
    POLICY_DATA=$(GET "$F5_URI/mgmt/tm/asm/policies/$POLICY_ID?\$select=fullPath,virtualServers,manualVirtualServers")
    POLICY_NAME=$(jq -r ".fullPath" <<< "$POLICY_DATA")
    VIRTUAL_SERVERS=$(jq -r '[.virtualServers.[]?,.manualVirtualServers.[]?] | length' <<< "$POLICY_DATA")
    [ "$VIRTUAL_SERVERS" -eq 0 ] && echo "$POLICY_NAME"
done < <(GET "$F5_URI/mgmt/tm/asm/policies?\$select=name,id" | jq -r '.items[].id')

No RepliesBe the first to reply

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

Re: TMSH Command to list ASM policies not attached to any virtual servers in all partitions

Jonathan - March 2026 Featured Member

F5 AppWorld 2026 Las Vegas - iRules Contest Winners!

2026 F5 DevCentral MVP Announcement

Recent Discussions

F5 DNS Logs in JSON Format

APM - Portal access - Issue

How to configure ssh access by key on F5OS

ASM/AWAF declarative policy

Help with an iRule to disconnect active connections to Pool Members that are "offline"

Related Content

F5 CIS IngressLink attaching WAF policy on the big-ip through the CRD ?

Fine-Tuning F5 NGINX WAF Policy with Policy Lifecycle Manager and Security Dashboard

Methods to attach ASM policy to virtual server via REST API requests

LTM Policy

iControl REST Cookbook - LTM policy (ltm policy)

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS