Manual Chapter : Evaluating policy differences

Applies To:

Show Versions Show Versions

BIG-IQ Centralized Management

  • 8.0.0
Manual Chapter

Evaluating policy differences

Web Application Security allows you to compare two Application Security Manager (ASM) policies, and view differences between them. You can use the comparison for auditing purposes, to make two policies act similarly, or to simply view the differences between two security policies. This is particularly useful for comparing a security policy in staging and a production version.
You can compare any imported or configured security policies including:
  • Active security policies (with or without Policy Builder)
  • Child Policies
  • Parent Policies
  • Inactive security policies
  • Policies not yet deployed to BIG-IP

User Requirements

To compare policies, you need to have a user role of Administrator or Web Application Security built-in role, or a custom Web Application Security role that allows access to Web Application Security resources.