Forum Discussion

antoni_300741's avatar
antoni_300741
Icon for Nimbostratus rankNimbostratus
Dec 05, 2016

ASM Policy Deployment Approach?

Hi All,

 

Need your ASM insights if it is possible that we already block all signatures (in the first place) while learning the composition of the websites automatically?

 

Note: We asked this because our understanding about ASM signatures is that this is already a well-known attack.*

 

Based on above, may we know what ASM deployment approach can address our above concern?

 

Appreciate your urgent reply. Thanks

 

1 Reply

  • It looks like you are asking if you can use one of the automatic policy building options and turn on blocking for signatures while you are letting the automatic policy learn the application? If so, then you can do that...you will need to make sure signatures are not in staging (put them in blocking mode). Be aware, though, that you may get several false positive blocks if you turn on blocking before the policy is fully aware of your application.