To support this configuration, you need a per-session access policy, but no specific
configuration is required in it. The per session policy and the per-request policy need to be
associated with the virtual server that connects to the resources being protected. You also need
to create or import URL categories from the URL database and the two URL filters that are used in
the macros. Refer to
BIG-IP Access Policy Manager: Secure Web Gateway
for details on
configuring the URL database, and creating URL categories and filters.