Last Modified: Nov 07, 2022
See more info
BIG-IQ Web App Security (ASM)
Known Affected Versions:
5.2.0, 5.4.0, 5.4.0 HF1, 5.4.0 HF2, 6.0.1, 18.104.22.168, 22.214.171.124, 7.0.0, 126.96.36.199, 188.8.131.52
Opened: Dec 19, 2019
Changing a parent policy in learning mode, or other learn attributes under policy-builder settings, may not be reflected in child policies after initial deployment to BI-IQ.
There are differences to the child policy after deployment.
On BIG-IP 1. Have a parent policy with disabled learning mode and policy building section that has mandatory inheritance. 2. Have a child policy for the parent from step 1 with wildcard wc/urls. On BIG-IQ: 3. Change parent learning mode to manual 4. Deploy changes 5. Re-deploy
Redeploy the policies to synchronized the child policies with the parent policy changes.