Hello to all,
I have many ASM policy to manage and update (about 100).
Therefore, it's really difficult to follow all application and security testing, so I chose to set the signature staging period to 0 because the WAF can give me suggestion ever, and I have more time to do the analysis.
Using this type of approach, however, I have a maintenance problem because every time that F5 deploy new signatures I have to do the Signature enforce on each policy.
Therefore the question is:
it is possible to enforce the signatures, only the "ready to be enforced", through an iControl?
from the API documentation I do not think there is anything that does this kind of work.