Forum Discussion

Johnnyx_304575's avatar
Aug 07, 2018

Application Security Policy - Event Logs

  1. How do I tell if the events under Security --> Event Logs --> Application --> Request are being permitted or blocked?
  2. How do I enable Response logging?
  3. What does it mean to Delete Request, Export Request, and Accept Request? If the request is accepted does this permit this type request?

Thanks!

 

  • nathe's avatar
    nathe
    Icon for Cirrocumulus rankCirrocumulus

    Johnnyx

     

    1. Dependant on version there'll be an icon to quickly tell you whether the request has been blocked, for example. A blocked request is a red circle with a white line through it.

       

    2. Enable Response Logging in a custom Logging profile

       

    3. Delete means to get rid of the request altogether, export will export the details to a HTML file and Accept means ASM will add an entry into the policy which will allow the request. For example, to allow a disallowed metacharacter perhaps.

       

    Hope this helps,

     

    N