Through Web Application Security, you can view and manage signature files and signature file updates centrally for multiple BIG-IP^® devices. For each signature file, the system displays the file name, the file version, the version of BIG-IP with which it is compatible, and its source.

You can also update certain signature file settings.

By managing signature files from the BIG-IQ^® Centralized Management platform, the administrator can spend less time on signature updates, and can view the signatures update information in a single central location.

The BIG-IP system includes an attack signature pool and a bot signature pool. These pools include the system-supplied attack signatures and bot signatures, which are shipped with the BIG-IP Application Security Manager, and any user-defined signatures.

Web Application Security fetches all new and relevant signature files from an external server, which may use a proxy. You can configure a proxy from the BIG-IQ Centralized Management system ( System > PROXIES ). The BIG-IQ Centralized Management system can then push the signature files to the relevant BIG-IP device or devices. It displays the signature version for each device.

1. Log in with Administrator, Security Manager, or Web App Security Manager credentials.
2. Navigate to the Signature Files screen: click Web Application Security > Signature Files .
3. In the Signatures file screen, click a specific signature file to view properties.
4. When you are finished, click Cancel.

Signature file properties are read-only and displayed for informational purposes only.

1. Log in with Administrator, Security Manager, or Web App Security Manager credentials.
2. Navigate to the Signature Files screen: click Web Application Security > Signature Files > Update Process/Push Status .
3. In Update Process/Push Status, edit the settings as needed.
   1. From the Interval list, select how often the update should run.
   2. This field is pre-populated with the current date and time. To change, type a starting date and time in the format: dd/mm/yyyy, hh:mm:ss AM (or PM). Example: 2/11/2016, 9:00:00 AM. Or, click in the field to bring up a calendar, select a date, and use the Hr and Min controls to select the hour and minute. You can also select Now, Clear, and Done.
   3. Select the Run Manual Sync check box to have the system synchronize the configuration with the standby device when a signature file is pushed to the primary BIG-IP device.
   Note that some fields are display only:

   • Last update: Specifies the last time the file was updated, and whether the update was done manually or automatically; for instance, Tue Oct 27 2015 10:40:27. (Triggered by scheduler).
   • Next update: Specifies the time of the next scheduled file update; for instance, Tue Oct 27 2015 10:40:27.
   • Last run status: Specifies the status of the last file update. Possible statuses include: Passed, Failed.
4. When you are finished, click Save.
   You can click Cancel to close the screen without saving your changes.
   Signatures are updated.
5. In the Current running task area, edit the settings as needed.
   1. Run now: To update the signature files and push them to the server, click the Update & push button.
      When the task has run to completion, the status displays as Completed. Ensure that the Auto update enabled check box on the Devices properties screen is checked, or updated files will not be pushed.
   2. Select the Run Manual Sync check box, and when a signature file is pushed to the primary BIG-IP device,the system synchronizes the configuration with the standby device.
   Note that the Current status setting specifies the status of the current file update. Possible statuses include: Passed, Failed.
6. When you are finished, click Save.
   You can click Cancel to close the screen without saving your changes.