Forum Discussion

Altostratus

Feb 15, 2016

What's the best way to start the ASM in a manner to achieve security and avoid false positives

Hi; Would starting with the Automatic policy builder with Trusted users only heavily testing the application, then stopping the policy builder after it has built what it needs to build and movin...

ASM Advanced WAF

security

Wasfi_182818

Altostratus

Feb 16, 2016

Thank you Samstep.

Kindly Wasfi

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

What's the best way to start the ASM in a manner to achieve security and avoid false positives

ICYMI - Steve Wozniak at AppWorld 2026

F5 Architecture Track Sessions - AppWorld 2026

Recent Discussions

TCP Profile with Verified Accept enabled and three-way TCP handshake

Pktclass Blob load failed

Connections appear not to use Persistence

Verify Client Certificates

VIP is not responding on SYN after enabling other modules like ASM, APM and AFM.

Related Content

Positive Security vs. Negative Security: A Comparison Using F5's Security Portfolio

Quarterly Security Notification October 2025

Achieving an SSL Labs A+ score with F5 products

F5 Distributed Cloud WAF AI/ML Model to Suppress False Positives

Achieving Low Latency and Resiliency with F5 Distributed Cloud CE and Arista Switch

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS