Forum Discussion

Altostratus

Oct 15, 2015

What is the significance of the 7 day period in ASM security policy

Hi; After 7 days the signatures are not enforced until we change the mode from transparent to blocking and enforce the signatures out of staging. My question is, what is the significance of the ...

Vitaliy_Savrans

Nacreous

Oct 15, 2015

Hi,

when you first activate a security policy, the system puts the attack signatures into staging (if staging is enabled). Staging means that the system applies the attack signatures to the web application traffic, but does not apply the blocking policy block action to requests that trigger those attack signatures. The default staging period is seven days.

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

What is the significance of the 7 day period in ASM security policy

ICYMI - Steve Wozniak at AppWorld 2026

F5 Architecture Track Sessions - AppWorld 2026

Recent Discussions

Connections appear not to use Persistence

Verify Client Certificates

TCP Profile with Verified Accept enabled and three-way TCP handshake

VIP is not responding on SYN after enabling other modules like ASM, APM and AFM.

F5 Software Downgrade from version 17.x.x to 15.x.x

Related Content

Quarterly Security Notification October 2025

Positive Security vs. Negative Security: A Comparison Using F5's Security Portfolio

BIG-IP security hardening and compliance checks

Oracle Periodically Security Update – Mitigating with ASM

What is Shape Security?

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS