I have ASM deployed in the network and have a dynamic website behind the same. I am bombarded with many violations with ratings 1 and 2 which the F5 suggests likely a false positive. Is there a way that I can allow the violations which have ratings 1 or 2 to pass through but at the same time provide an alert ?
You would have to configure the security policy to not Alarm under Enforcement Mode.
It can be achieved by configuring blocking actions for violations under:
Security > Application Security > Blocking.