Forum Discussion

Bart_382462's avatar
Bart_382462
Icon for Nimbostratus rankNimbostratus
Feb 21, 2019

Templates for ASM security policy

Hello,

 

I have few SharePoint applications on F5 (workflow manager, teamspace, office online... ) I'm quite new in ASM configuration. I would like to built security policies acording to SharePoint 2016 templates and I'm not sure if I can use this template for all applications. My plan is to build policy for existing virtual server, create policy manually ( to have possiblites chosing templates) and put Enforcement Readiness Period for 2 weeks to have chance to investigate all sugestions. What is the best option to use templates ( in this case if it is possible to use for all this application this one template), or maybe to create policy automatically and provide for all applications Atack Signatures ( Operating System, Web Server, Languages, Freamework and Applications....)

 

Best Regards Bart

 

1 Reply

  • The pre-configured templates for commonly used applications such as Sharepoint, OWA, etc. are intended to provide hassle-free configuration of security policies for those apps specifically. For example, if you examine the file types, URLs,and parameters of your Sharepoint policy, you'll find entities that are unique to Sharepoint. This type of policy won't work very well if applied to some other application. For other apps, use one of the generic templates and build your policy over time.