Manual Chapter : Common elements for advanced ASM configuration

Applies To:

Show Versions Show Versions

BIG-IP ASM

  • 14.0.0
Manual Chapter

Common elements for advanced ASM configuration

  1. On the Main tab, click
    Security
    Options
    Application Security
    Advanced Configuration
    Violations List
    .
  2. Click
    User-Defined Violations
    .
  3. For
    Grace Period Until signing with new Security Context
    , type the amount of time in minutes that must pass before the system begins signing ASM cookies with the new key and algorithm that you are configuring.
    The default value is
    30
    minutes. Initially when you start the system, this is the period the system waits to apply the new security context for the new release.
  4. For
    Grace Period To Accept Old Cookies
    , type the amount of time in minutes that must pass before the system stops accepting traffic with ASM cookies that use the old key and algorithm.
    The default value is
    2880
    minutes (48 hours).
  5. To review the details of the cookie protection, click
    View Algorithms Configuration
    .
    The screen shows the specific algorithms the system uses to protect domain and other ASM cookies.
  6. If you need to extend either of the grace periods, click
    Extend
    and type the number of minutes to add and click
    Save
    .