Manual Chapter :
Creating URLs on a mobile security profile
Applies To:
Show VersionsBIG-IP FPS
- 17.1.2, 17.1.1, 17.1.0, 17.0.0, 16.1.5, 16.1.4, 16.1.3, 16.1.2, 16.1.1, 16.1.0, 16.0.1, 16.0.0, 15.1.9, 15.1.8, 15.1.7, 15.1.6, 15.1.5, 15.1.4, 15.1.3, 15.1.2, 15.1.0
Creating URLs on a mobile security profile
Before creating a URL for mobile security alerts, you should create a mobile security anti-fraud profile.
Create URLs on a mobile security profile to ensure proper protection of your mobile app.
- On the Main tab, click.The Anti-Fraud Profiles screen opens.
- From the list of profiles, select the mobile security profile that you created.The Anti-Fraud Profile Properties screen opens.
- In the Anti-Fraud Configuration area, clickURL List.
- Click theAdd URLbutton.The Create New URL screen opens.
- In theURL Pathfield, type the URL path in the text box.
- For Application Type, selectMobile.
- Ensure thatMobile Encryption Parameteris enabled.
- If you want the BIG-IP system to enforce application level encryption on a parameter in every request to the URL, do the following:
- In the URL Configuration area, selectParameters.
- Click theAddbutton.The Parameter Settings screen opens.
- In theParameter Namefield, type a name for the parameter.
- In the Mobile Security section, select theEnforcecheck box.
- ClickCreate.The parameter settings are saved and the URL Properties screen opens.
When a parameter is marked with theEnforceattribute, if the BIG-IP system detects that the parameter is not encrypted it sends an alert and replaces the value of that parameter with a configurable value that the server will reject (for instructions on how to configure this value, see the section on setting a replacement value for a URL parameter that is not encrypted). For example, theEnforceattribute can be applied to a password parameter, and if the BIG-IP system detects that password value is not encrypted, it will be replaced with an empty string that the server rejects and thus prevents a successful login.You cannot mark a parameter with theEnforceattribute ifMobile Encryption Parameteris disabled on this URL. - If the URL has a user name parameter, do the following:
- In the URL Configuration area, selectParameters.
- Click theAddbutton.The Parameter Settings screen opens.
- In theParameter Namefield, type a name for the parameter.
- SelectIdentify as Username.Only one parameter per URL can have the attributeIdentify as Username.
- ClickCreate.The parameter settings are saved and the URL Properties screen opens.
- ClickSavein the URL Properties screen.