Declarative Policy WAF with custom partition

forsan · ‎10-Jun-2022

Hi,

I'm trying to deploy a WAF policy using Declarative Policy using the following guide:
https://techdocs.f5.com/en-us/bigip-15-1-0/big-ip-declarative-security-policy/declarative-policy-imp...

It works when deploying to Common partition, but I want to use a custom partition where the service account only has access to the partition I named Api.

When using admin account I send this:

{

"fileReference": {

"link":"https://gitlab.mindoman.se/abcde/api/-/raw/main/swagger.json"

},

"policy":{

"fullPath":"/Api/swagger-policy-1"

}

The result I get is:

"items": [

{

"isBase64": false,

"executionStartTime": "2022-06-10T12:15:41Z",

"status": "COMPLETED",

"lastUpdateMicros": 1.654863352e+15,

"getPolicyAttributesOnly": false,

"kind": "tm:asm:tasks:import-policy:import-policy-taskstate",

"selfLink": "https://localhost/mgmt/tm/asm/tasks/import-policy/2m4mUX_BJzghS83ktGM30g?ver=16.1.2",

"filename": "",

"endTime": "2022-06-10T12:15:53Z",

"id": "2m4mUX_BJzghS83ktGM30g",

"startTime": "2022-06-10T12:15:41Z",

"retainInheritanceSettings": false,

"result": {

"policyReference": {

"link": "https://localhost/mgmt/tm/asm/policies/QS72lc7acoBIs1fW6XYJ3w?ver=16.1.2",

"fullPath": "/Common/swagger"

},

"message": "The operation was completed successfully. The security policy name is '/Common/swagger'. Policy Template set to API Security."

},

"fileReference": {

"link": "gitlab.mindoman.se/abcde/api/-/raw/main/swagger.json"

}

So the policy is created in Common, not in /Api as specified in fullPath.

Anyone that has succeded to deploy in custom partition?

Br Andréas

Kevin_Davies · ‎11-Jul-2022

Does it support partitions?

DevCentral

Declarative Policy WAF with custom partition