For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

Canan_374222's avatar
Canan_374222
Icon for Nimbostratus rankNimbostratus
Mar 19, 2019

User gets blocking page instead of captcha during brute force attack

Hello everyone, I want to mitigate brute force captcha to Exchance OWA. However, user gets blocking page instead of captcha during brute force attack. Although I created brute force protection config...
ASM Advanced WAF
security
JacobCaballero's avatar
JacobCaballero
Icon for Nimbostratus rankNimbostratus
Mar 19, 2019

Hi Canan,

 

Fortunately, I am familiar with this issue. You need to qualify the URL as a login page. You must log into the command line and run the command: tmsh modify /sys db asm.cs.qualified_urls value /loginpage.mvc

 

This should fix your problem. Let me know if it works for you!

 

  • Bobow's avatar
    Bobow
    Icon for Cirrus rankCirrus
    Jul 20, 2019

    Hi Jacob,

     

    there is no impact on system?

    What the command if we want to revert back after do command "tmsh modify /sys db asm.cs.qualified_urls value /loginpage.mvc" ?

     

    Thanks