Manual Chapter : Common elements XML security

Applies To:

Show Versions Show Versions

BIG-IP ASM

  • 14.0.0
Manual Chapter

Common elements XML security

  1. On the Main tab, click
    Security
    Application Security
    Content Profiles
    XML Profiles
    .
    The XML Profiles screen opens.
  2. Select the
    Use XML Blocking Response Page
    check box to send an XML response page when the security policy blocks a request that contains XML content that does not comply with this XML profile.
  3. In the Defense Configuration area, for
    Defense Level
    , select
    High
    (the default value),
    Medium
    , or
    Low
    to specify the level of protection you want the security policy to provide for XML applications and services.
    The system adjusts the defense configuration settings according to your choice. You can review the settings by selecting
    Advanced
    next to Defense Configuration.
  4. If you are on the Create New XML Profile screen, skip to step 2. If not, at the top of the screen, click the
    Create new XML profile
    link.
    You can also navigate to
    Security
    Application Security
    Content Profiles
    XML Profiles
    and click
    Create
    .
    The Create New XML Profile screen opens.
  5. Click
    Create
    .
    The Associate XML Profile screen opens.
  6. For the
    Associate XML Profile
    setting, specify whether to associate the XML profile with a URL or a parameter:
    Option
    Description
    URL
    Validates XML data found in requests to this URL.
    Parameter
    Validates XML data in a parameter. You also select the
    Parameter Level
    :
    Global
    specifies that this is a global parameter that has no association with URLs.
    URL
    specifies that this parameter is associated with a specific URL, a protocol (HTTP or HTTPS), and a target URL path.
  7. Click
    Next
    .
    The New Allowed URL or Add Parameter screen opens, depending on which entity you choose to associate with the XML profile.
  8. Create the URL or parameter to associate with the XML profile. Your steps depend on which option you selected.
    Option
    Description
    URL
    Type the explicit URL or wildcard URL that represents the web application, and click
    Next
    .
    Global Parameter
    Type the name of the parameter, and click
    Create
    .
    URL Parameter
    Type the explicit URL or wildcard URL that represents the web application, and click
    Next
    .
    Type the name of the parameter, and click
    Create
    .
    The system creates the URL or parameter and displays the list of entities.
  9. Click
    Upload
    .
    The screen lists the uploaded file.
  10. If the imported file references another URL (and the setting is available), for
    Import URL
    , type the URL.
  11. To allow SOAP messages to have attachments, select the
    Allow Attachments in SOAP Messages
    check box.
  12. Click
    Create
    .
    In most cases, the system automatically associates a URL or parameter with the application based on the WSDL file.
    If the XML Profiles screen is displayed, you are done creating the profile. Otherwise, the Associate XML Profile screen opens, and you can continue with the next step.