ASM 11.5.3 Enforcement Readiness
Currently our ASM Security policy is learning in Transparent mode.
I am looking at the enforcement readiness summary, and want to enforce the "Ready To Be Enforced" Entities that it is suggesting.
My question is-If I choose to enforce these entities, it will not change the Security Policy to blocking automatically, right?
I want it to be able to continue to learn, and tune the policy without blocking anything. (we have another WAF that is blocking right now, but we are planning to replace it)
Point is- I want to make sure that when we make the switch and turn the F5 ASM to blocking mode, there will be zero to very very little user interruption if any. We are trying to make this as seamless as possible- including aligning the policies of the other WAF with the F5 ASM policies.
Thanks!