Last Modified: Nov 22, 2021
Opened: May 29, 2018 Severity: 3-Major
When auto-deploy is enabled for a policy for BIG-IP devices in a service scaling group, scaling fails.
Attempts are made to auto-deploy the WAF policy every 5 minutes to the BIG-IP devices in an SSG, and it continues to fail.
When all the following three conditions are met 1) BIG-IP devices in an SSG is provisioned with WAF (Web Application Security) 2) WAF Policy is set to learning mode=Automatic, Policy Building Mode=Central, Auto-Deploy Policy=Real Time. 3) Auto scale BIG-IP VE devices in an SSG greater than 1.
Disable auto-deploy by setting Configuration:Web Application Security:policies:<ASMPolicy>:POLICY BUILDING:Settings:Auto-Deploy Policy to Disabled.