Help
Technical Forum
Ask questions. Discover Answers.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Technical Forum Quicklinks: No Replies | Active-Not Solved | Recent Solutions

Unable to mask XML parameter

Aantat
Cirrus
Cirrus

‎01-Aug-2023 04:58

Hello F5 experts,

I was configuring AWF policy and faced a problem with masking value of XML parameter. but without success.

I've imported XML scheme. I've configured Value Masking according to the documentation. I've tried to configure it as a Sensetive Parameter, but without success.

What am I missing? What should I set up? Where am I making a mistake?

I will be glad for any help.

Labels:
0 Kudos
5 REPLIES 5

Mostafa_Elsayed
Cirrus
Cirrus

‎01-Aug-2023 07:18

Hi @Aantat ,

I faced same issue with AJAX profile, and one missed thing here is attaching XML profile you create in (Wildcard) HTTPS url.

You can follow below KB (K39482497) and share result with us.

https://my.f5.com/manage/s/article/K39482497

 

0 Kudos

Aantat
Cirrus
Cirrus
In response to Mostafa_Elsayed

‎02-Aug-2023 06:16

I followed that KB but I'm still facing same issue. It's not working

0 Kudos

Robinsdf
Nimbostratus
Nimbostratus

‎01-Aug-2023 21:50

Hello,

If kyou are facing a problem with masking XML parameter value in AWF policy. Imported XML scheme, configured Value Masking as per docs, and marked it as Sensitive Parameter but unsuccessful. Check XML schema alignment, review masking configuration, and test with sample XML payloads. It can be solution.

Best Regards
Cracker Barrel Listens
0 Kudos

Aantat
Cirrus
Cirrus

‎02-Aug-2023 06:28

Hello experts,

I'm still facing the issue with masking parameter value. I've tried lot's of combinations in Header-Based Content Profile, but no success.

Could the problem be that the value of the Content-Type is the 'application' and not the 'xml'?

How can I validate my XML scheme? Could the problem is wrong XML scheme?

Added some screenshots with requests and example of configurations.ar2.PNGar1.PNG

0 Kudos

Ismael_Goncalves
F5 Employee
F5 Employee
In response to Aantat

‎08-Aug-2023 09:55

@Aantat "Could the problem be that the value of the Content-Type is the 'application' and not the 'xml'?"

That's correct. Your Content-Type is 'application/x-www-form-urlencoded' which will not match the *xml* Content-Type expected to trigger the XML parsing and XMl profile assisngment. Hence, the data won't be masked. 

If all the requests to this URL are expected to be XML even if the request does not present the correct Content-Type, you can configure content-type '*form*' and treat it as an XML. 

0 Kudos
Copyright © 2023 Khoros, LLC