Forum Discussion
xpnsec_138837
Nimbostratus
NimbostratusSession Tracking - Blocking Username Requests
Hi,
I am currently rolling out the session tracking functionality of ASM.
The functionality seems to be working fine in terms of violations now provide the username and Session ID of a logg...
Sounds like you are doing the right thing, so it's interesting that the username is not blocked. I'm not sure if any of this will help, but here's a quick article I wrote on username tracking...maybe it will have some info that will be helpful.
https://devcentral.f5.com/articles/the-big-ip-application-security-manager-part-9-username-and-session-awareness-tracking.UrBpT7HnbIU
