We have enabled ASM module in f5 and configured different application security policies for the applications.
Most of them are in blocking mode and we could see non legitimate traffic are blocked effectively.
In this stage we would like to generate reports from f5 to few mail ID's. SMTP is configured and i have tested by configuring some reports. As I see there are many scenarios of reports available and I'm not exactly sure what type of reports will be helpful for us.
So if there are any standared reports/ concenrs that we should know through reports that would be helpful. Also if there are any previous posts, articles related to scduling ASM report types would be helpful.
Generate all reports. Then schedule some time with the business security owner, CISO, or other executive. Review the reports, and obtain guidance on what makes sense. Just enable those then.
