Customers want to receive timely reports that summarize the security state of their apps and API’s, which they can review and take necessary next steps by logging in to the console.
The latest feature implemented in F5 Distributed Cloud Services (F5 XC) is Web App and API Protection (WAAP) scheduled reports, which gives us the ability to generate reports (at daily, weekly or monthly intervals). These reports have details of all WAAP summaries and can be emailed to one or more users on the tenant. This feature generates periodic snapshots of the WAAP summaries in light weight html format.
Once you have created your reports, F5 XC will keep generating periodic reports and will save them in the history page. This page consolidates all reports and can be future referenced if we want to check details in reports at a specific instance of time.
Step by step process:
Access to F5 XC account - Check reference links for getting started
Namespaces, Origin Pools and Load balancers (LB) already created - Check reference links for more details
UserGroups already configured with emails - Check reference links for user creation
Login to F5 XC console and navigate to WAAP menu
Under Manage section, expand reports and then to report management page Similar page can also be found under Shared configuration menu
Click on “Create Report” button and then provide some name & description
Select service type, namespaces, report type and time details. Optionally if you want to opt for emails, you can also provide UserGroups
Save the configuration and check the details
As per the scheduled time, service report will be generated and stored in history page
If needed, we can generate report instantly by selecting “Generate and Send now” option available in Actions column
Below image shows a sample html report generated
This article has provided an insight into understanding the basics and configuration steps of WAAP Scheduled reports.