FLAG_ONFLAG_OFFFLAG_UNCHANGEDVIOLATION_EVASION_DETECTEDVIOLATION_VIRUS_DETECTEDVIOLATION_REQUEST_TOO_LONGVIOLATION_ILLEGAL_INGRESS_OBJECTVIOLATION_PARSER_EXPIRED_INGRESS_OBJECTVIOLATION_RESPONSE_SCRUBBINGVIOLATION_ILLEGAL_SOAP_ATTACHMENTVIOLATION_MISSING_MANDATORY_HEADERVIOLATION_ILLEGAL_GEOLOCATIONVIOLATION_HTTP_SANITY_CHECK_FAILEDVIOLATION_CHAR_CONVVIOLATION_CSRFVIOLATION_MALFORMED_XMLVIOLATION_XML_WSDLVIOLATION_XML_FORMAT_SETTINGVIOLATION_PARSER_FAILED_SOAP_SECURITYVIOLATION_SOAP_METHOD_NOT_ALLOWEDVIOLATION_BRUTE_FORCE_ATTACK_DETECTEDVIOLATION_WEB_SCRAPING_DETECTEDVIOLATION_CSRF_EXPIREDVIOLATION_OBJ_LENVIOLATION_COOKIE_LENVIOLATION_REQ_LENVIOLATION_QS_LENVIOLATION_POST_DATA_LENVIOLATION_MULTI_PART_PARAM_VALVIOLATION_HEADER_LENVIOLATION_JSON_FORMAT_SETTINGVIOLATION_REPEATED_PARAMETER_NAMEVIOLATION_METACHAR_IN_OBJVIOLATION_METACHAR_IN_PARAM_NAMEVIOLATION_METACHAR_IN_DEF_PARAMVIOLATION_OBJ_TYPEVIOLATION_OBJ_DOESNT_EXISTVIOLATION_FLOW_TO_OBJVIOLATION_ILLEGAL_METHODVIOLATION_SESSSION_ID_IN_URLVIOLATION_QS_OR_POST_DATAVIOLATION_PARAMVIOLATION_EMPTY_PARAM_VALUEVIOLATION_STATIC_PARAM_VALUEVIOLATION_DYN_PARAM_VALUEVIOLATION_PARAM_VALUE_LENVIOLATION_PARAM_DATA_TYPEVIOLATION_PARAM_NUMERIC_VALUEVIOLATION_NUM_OF_MANDATORY_PARAMSVIOLATION_PARAM_VALUE_NOT_MATCHING_REGEXVIOLATION_MOD_ASM_COOKIEVIOLATION_MOD_DOMAIN_COOKIEVIOLATION_NOT_RFC_COOKIEVIOLATION_MALFORMED_JSONVIOLATION_ENTRY_POINTVIOLATION_SESSION_AWARENESSVIOLATION_MSG_KEYVIOLATION_EXPIRED_TIMESTAMPVIOLATION_DISALLOWED_FILE_UPLOAD_CONTENTVIOLATION_METACHAR_IN_HEADERVIOLATION_ILLEGAL_REQUEST_CONTENT_TYPEVIOLATION_HTTP_STATUS_IN_RESPONSEVIOLATION_PARSER_ACCESS_FROM_MALICIOUS_IP_ADDRESSVIOLATION_GWT_FORMAT_SETTINGVIOLATION_MALFORMED_GWTVIOLATION_BASE64_PARAM_VALUEVIOLATION_REDIRECTVIOLATION_WEBSOCKET_BAD_REQUESTVIOLATION_WEBSOCKET_FRAMING_PROTOCOLVIOLATION_WEBSOCKET_FRAME_MASKINGVIOLATION_WEBSOCKET_FRAME_LENGTHVIOLATION_WEBSOCKET_TEXT_NULL_VALUEVIOLATION_CROSS_ORIGIN_REQUESTVIOLATION_WEBSOCKET_TEXT_MESSAGE_NOT_ALLOWEDVIOLATION_WEBSOCKET_BINARY_MESSAGE_NOT_ALLOWEDVIOLATION_WEBSOCKET_EXTENSIONVIOLATION_WEBSOCKET_FRAMES_PER_MESSAGE_COUNTVIOLATION_WEBSOCKET_BINARY_MESSAGE_LENGTHVIOLATION_PLAINTEXT_FORMAT_SETTINGDOS_OPERATION_OFFDOS_OPERATION_TRANSPARENTDOS_OPERATION_BLOCKINGDOS_DETECTION_TPS_BASEDDOS_DETECTION_LATENCY_BASEDFILE_UNDEFINEDFILE_FIRSTFILE_MIDDLEFILE_UNUSEDFILE_LASTFILE_FIRST_AND_LASTDYNAMIC_SESSIONS_DISABLEDDYNAMIC_SESSIONS_DEFAULT_PATTERNDYNAMIC_SESSIONS_CUSTOM_PATTERNLANGUAGE_UNDEFINEDUNICODE_UTF_8WESTERN_EUROPEAN_ISO_8859_1WESTERN_EUROPEAN_WINDOWS_1252WESTERN_EUROPEAN_ISO_8859_15CENTRAL_EUROPEAN_ISO_8859_2CENTRAL_EUROPEAN_WINDOWS_1250SOUTH_EUROPEAN_ISO_8859_3GREEK_ISO_8859_7GREEK_WINDOWS_1253NORDIC_ISO_8859_10CYRILLIC_WINDOWS_1251CYRILLIC_KOI8_RCYRILLIC_ISO_8859_5ROMANIAN_ISO_8859_16BALTIC_ISO_8859_4BALTIC_ISO_8859_13BALTIC_WINDOWS_1257HEBREW_WINDOWS_1255HEBREW_ISO_8859_8JAPANESE_SHIFT_JISJAPANESE_EUC_JPKOREAN_EUC_KRCHINESE_BIG5CHINESE_GB2312THAI_CP874ARABIC_ISO_8859_6CHINESE_GBKCHINESE_GB18030TURKISH_ISO_8859_9ARABIC_WINDOWS_1256POLICY_TEMPLATE_EMPTYPOLICY_TEMPLATE_SHAREPOINT_2007_HTTPPOLICY_TEMPLATE_SHAREPOINT_2007_HTTPSPOLICY_TEMPLATE_OWA_EXCHANGE_2003_HTTPPOLICY_TEMPLATE_OWA_EXCHANGE_2003_HTTPSPOLICY_TEMPLATE_ORACLE_APPLICATIONS_11I_HTTPPOLICY_TEMPLATE_ORACLE_APPLICATIONS_11I_HTTPSPOLICY_TEMPLATE_LOTUSDOMINO_6_5_HTTPPOLICY_TEMPLATE_LOTUSDOMINO_6_5_HTTPSPOLICY_TEMPLATE_OWA_EXCHANGE_2007_HTTPPOLICY_TEMPLATE_OWA_EXCHANGE_2007_HTTPSPOLICY_TEMPLATE_SAP_NETWEAVER_7_HTTPPOLICY_TEMPLATE_SAP_NETWEAVER_7_HTTPSPOLICY_TEMPLATE_RAPID_DEPLOYMENT_HTTPPOLICY_TEMPLATE_RAPID_DEPLOYMENT_HTTPSPOLICY_TEMPLATE_PEOPLESOFT_PORTAL_9_HTTPPOLICY_TEMPLATE_PEOPLESOFT_PORTAL_9_HTTPSPOLICY_TEMPLATE_ORACLE_10G_PORTAL_HTTPPOLICY_TEMPLATE_ORACLE_10G_PORTAL_HTTPSPOLICY_TEMPLATE_SHAREPOINT_2003_HTTPPOLICY_TEMPLATE_SHAREPOINT_2003_HTTPSPOLICY_TEMPLATE_ACTIVESYNC_V1_0_V2_0_HTTPPOLICY_TEMPLATE_ACTIVESYNC_V1_0_V2_0_HTTPSPOLICY_TEMPLATE_OWA_EXCHANGE_2007_WITH_ACTIVESYNC_HTTPPOLICY_TEMPLATE_OWA_EXCHANGE_2007_WITH_ACTIVESYNC_HTTPSPOLICY_TEMPLATE_OWA_EXCHANGE_2003_WITH_ACTIVESYNC_HTTPPOLICY_TEMPLATE_OWA_EXCHANGE_2003_WITH_ACTIVESYNC_HTTPSPOLICY_TEMPLATE_WHITEHAT_SENTINEL_BASELINEPOLICY_TEMPLATE_OWA_EXCHANGE_2010_HTTPPOLICY_TEMPLATE_OWA_EXCHANGE_2010_HTTPSPOLICY_TEMPLATE_SHAREPOINT_2010_HTTPPOLICY_TEMPLATE_SHAREPOINT_2010_HTTPSPOLICY_TEMPLATE_RAPID_DEPLOYMENTPOLICY_TEMPLATE_RAPID_DEPLOYMENT_PB
Get the list of policies.
This method has been deprecated. As of v11.0.0, there is separate Web Acceleration profile,
which is assigned to VS, so WA is not associated with ASM directly, like it was in v10.x.x.
Detaches the WA web applications from the ASM policy.
This method has been deprecated. As of v11.0.0, there is separate Web Acceleration profile,
which is assigned to VS, so WA is not associated with ASM directly, like it was in v10.x.x.
Associates the WA web applications to the ASM policy.
Associates the ASM policy to the specified virtual servers.
Detaches the ASM policy from the specified virtual servers.
Create inactive policies.
Create case insensitive or sensitive inactive policies.
Create inactive policies from template.
Create inactive policies from template names.
Create inactive policies from template with specified language encoding.
Create inactive policies from template names with specified language encoding.
This method has been deprecated. As of v11.4.0, the ASM policy name is immutable.
Rename policies.
Deletes a policy.
Updates the active flag for the specified policies.
Get the active flag for the specified policies.
Applies the specified active policy to the enforcer.
Reconfigures the ASM policies. This resets all properties and statistics of the policy.
Updates policy description.
Get policy description.
Reconfigures the ASM policies with specified language encoding. This resets all properties and statistics of the policy.
Get language encoding.
Reconfigures the ASM policies with specified language and template. This resets all properties and statistics of the policy.
Reconfigures the ASM policies with specified language and template name. This resets all properties and statistics of the policy.
This method has been deprecated. As of v11.3.0, there is separate Security log profile,
which is assigned to VS, so logging profile is not associated with ASM directly.
Updates logging profile.
This method has been deprecated. As of v11.3.0, there is separate Security log profile,
which is assigned to VS, so logging profile is not associated with ASM directly.
Get logging profile.
Updates max cookie length.
Get the max cookie length.
Updates max http header length.
Get max http header length.
This method has been deprecated. As of v11.3.0, there is separate DoS profile,
which is assigned to VS, so DoS settings are not associated with ASM directly.
Updates DoS operation mode.
This method has been deprecated. As of v11.3.0, there is separate DoS profile,
which is assigned to VS, so DoS settings are not associated with ASM directly.
Updates DoS detection mode.
This method has been deprecated. As of v11.3.0, there is separate DoS profile,
which is assigned to VS, so DoS settings are not associated with ASM directly.
Updates DoS latency increase rate.
This method has been deprecated. As of v11.3.0, there is separate DoS profile,
which is assigned to VS, so DoS settings are not associated with ASM directly.
Updates DoS maximum latency.
This method has been deprecated. As of v11.3.0, there is separate DoS profile,
which is assigned to VS, so DoS settings are not associated with ASM directly.
Updates DoS minimum latency.
This method has been deprecated. As of v11.3.0, there is separate DoS profile,
which is assigned to VS, so DoS settings are not associated with ASM directly.
Updates DoS Source IP-Based Client Side Integrity Defense flag.
This method has been deprecated. As of v11.3.0, there is separate DoS profile,
which is assigned to VS, so DoS settings are not associated with ASM directly.
Updates DoS Source IP-Based Rate Limiting flag.
This method has been deprecated. As of v11.3.0, there is separate DoS profile,
which is assigned to VS, so DoS settings are not associated with ASM directly.
Updates DoS URL-Based Client Side Integrity Defense flag.
This method has been deprecated. As of v11.3.0, there is separate DoS profile,
which is assigned to VS, so DoS settings are not associated with ASM directly.
Updates DoS URL-Based Rate Limiting flag.
This method has been deprecated. As of v11.3.0, there is separate DoS profile,
which is assigned to VS, so DoS settings are not associated with ASM directly.
Updates DoS Source IP-Based TPS increase rate.
This method has been deprecated. As of v11.3.0, there is separate DoS profile,
which is assigned to VS, so DoS settings are not associated with ASM directly.
Updates DoS Source IP-Based maximum TPS.
This method has been deprecated. As of v11.3.0, there is separate DoS profile,
which is assigned to VS, so DoS settings are not associated with ASM directly.
Updates DoS Source IP-Based minimum TPS.
This method has been deprecated. As of v11.3.0, there is separate DoS profile,
which is assigned to VS, so DoS settings are not associated with ASM directly.
Updates DoS URL-Based TPS increase rate.
This method has been deprecated. As of v11.3.0, there is separate DoS profile,
which is assigned to VS, so DoS settings are not associated with ASM directly.
Updates DoS URL-Based maximum TPS.
This method has been deprecated. As of v11.3.0, there is separate DoS profile,
which is assigned to VS, so DoS settings are not associated with ASM directly.
Updates DoS URL-Based minimum TPS.
This method has been deprecated. As of v11.3.0, there is separate DoS profile,
which is assigned to VS, so DoS settings are not associated with ASM directly.
Updates DoS maximum prevention duration.
This method has been deprecated. As of v11.3.0, there is separate DoS profile,
which is assigned to VS, so DoS settings are not associated with ASM directly.
Adds DoS white IPs to the specified policy.
This method has been deprecated. As of v11.3.0, there is separate DoS profile,
which is assigned to VS, so DoS settings are not associated with ASM directly.
Removes DoS white IPs from the specified policy.
This method has been deprecated. As of v11.3.0, there is separate DoS profile,
which is assigned to VS, so DoS settings are not associated with ASM directly.
Get DoS settings.
This method has been deprecated. As of v11.3.0, there is separate DoS profile,
which is assigned to VS, so DoS settings are not associated with ASM directly.
Resets DoS settings to defaults.
Updates blocking flag.
Updates prerequisite expiration period flag.
Get blocking flag.
Updates violation blocking flag.
Gets violation blocking flag.
Import Policy as inactive.
Before calling import_policy, upload_policy should be done.
Once the policy is completely uploaded, you can import it.
Export Policy
The export_policy method exports the policy specified in parameter policy_name
and writes the file to the device's local disk. The policy is saved in a binary format.
This method is typically followed by a call to download_policy which gets this full path
filename as a parameter.
Export Human Readable Policy
The export_policy_xml method exports the policy specified in parameter policy_name
and writes the file to the device's local disk. The policy is saved in an XML format.
This method is typically followed by a call to download_policy which gets this full path
filename as a parameter.
Downloads the policy from the device.
The download_policy is typically called after having called to export_policy.
The parameter policy_name must be the same as used during export_policy.
The file is downloaded in chunks. Each chunk should be concatenated to the previous one
on the client side.
The return value has two fields:
- file_data: The relevant part of the content of the file
- chunk_type: Indicates the current chunk whether it is the first, middle, last chunk
or the current call includes the entire file.
Uploads the policy to the device.
In order to import a policy two things have to be done in this order
- call upload_policy
- call import_policy
upload_policy uploads the policy to the device to /var/tmp/ directory.
The filename is the name of the policy given in policy_name.
If the policy is big, it should be uploaded in chunks using a loop on the client side.
Gets the version information for this interface.
Set the "dynamic sessions in URL" for the specified policies.
Get the "dynamic sessions in URL" for the specified policies.
Uploads the the wsdl and attaches it to a specific xml profile of a policy.
This method is deprecated, please use WhiteHat Sentinel Vulnerabilities page in ASM GUI to configure predictable resource location.
Add predictable resource location
This method is deprecated, please use WhiteHat Sentinel Vulnerabilities page in ASM GUI to configure path traversal.
Set path traversal
This method is deprecated, please use WhiteHat Sentinel Vulnerabilities page in ASM GUI to configure response splitting.
Set HTTP response splitting
Determines whether the specified policies have a complex association type.
Get the list of policies.
This method has been deprecated. As of v11.0.0, there is separate Web Acceleration profile,
which is assigned to VS, so WA is not associated with ASM directly, like it was in v10.x.x.
Detaches the WA web applications from the ASM policy.
This method has been deprecated. As of v11.0.0, there is separate Web Acceleration profile,
which is assigned to VS, so WA is not associated with ASM directly, like it was in v10.x.x.
Associates the WA web applications to the ASM policy.
Associates the ASM policy to the specified virtual servers.
Detaches the ASM policy from the specified virtual servers.
Create inactive policies.
Create case insensitive or sensitive inactive policies.
Create inactive policies from template.
Create inactive policies from template names.
Create inactive policies from template with specified language encoding.
Create inactive policies from template names with specified language encoding.
This method has been deprecated. As of v11.4.0, the ASM policy name is immutable.
Rename policies.
Deletes a policy.
Updates the active flag for the specified policies.
Get the active flag for the specified policies.
Applies the specified active policy to the enforcer.
Reconfigures the ASM policies. This resets all properties and statistics of the policy.
Updates policy description.
Get policy description.
Reconfigures the ASM policies with specified language encoding. This resets all properties and statistics of the policy.
Get language encoding.
Reconfigures the ASM policies with specified language and template. This resets all properties and statistics of the policy.
Reconfigures the ASM policies with specified language and template name. This resets all properties and statistics of the policy.
This method has been deprecated. As of v11.3.0, there is separate Security log profile,
which is assigned to VS, so logging profile is not associated with ASM directly.
Updates logging profile.
This method has been deprecated. As of v11.3.0, there is separate Security log profile,
which is assigned to VS, so logging profile is not associated with ASM directly.
Get logging profile.
Updates max cookie length.
Get the max cookie length.
Updates max http header length.
Get max http header length.
This method has been deprecated. As of v11.3.0, there is separate DoS profile,
which is assigned to VS, so DoS settings are not associated with ASM directly.
Updates DoS operation mode.
This method has been deprecated. As of v11.3.0, there is separate DoS profile,
which is assigned to VS, so DoS settings are not associated with ASM directly.
Updates DoS detection mode.
This method has been deprecated. As of v11.3.0, there is separate DoS profile,
which is assigned to VS, so DoS settings are not associated with ASM directly.
Updates DoS latency increase rate.
This method has been deprecated. As of v11.3.0, there is separate DoS profile,
which is assigned to VS, so DoS settings are not associated with ASM directly.
Updates DoS maximum latency.
This method has been deprecated. As of v11.3.0, there is separate DoS profile,
which is assigned to VS, so DoS settings are not associated with ASM directly.
Updates DoS minimum latency.
This method has been deprecated. As of v11.3.0, there is separate DoS profile,
which is assigned to VS, so DoS settings are not associated with ASM directly.
Updates DoS Source IP-Based Client Side Integrity Defense flag.
This method has been deprecated. As of v11.3.0, there is separate DoS profile,
which is assigned to VS, so DoS settings are not associated with ASM directly.
Updates DoS Source IP-Based Rate Limiting flag.
This method has been deprecated. As of v11.3.0, there is separate DoS profile,
which is assigned to VS, so DoS settings are not associated with ASM directly.
Updates DoS URL-Based Client Side Integrity Defense flag.
This method has been deprecated. As of v11.3.0, there is separate DoS profile,
which is assigned to VS, so DoS settings are not associated with ASM directly.
Updates DoS URL-Based Rate Limiting flag.
This method has been deprecated. As of v11.3.0, there is separate DoS profile,
which is assigned to VS, so DoS settings are not associated with ASM directly.
Updates DoS Source IP-Based TPS increase rate.
This method has been deprecated. As of v11.3.0, there is separate DoS profile,
which is assigned to VS, so DoS settings are not associated with ASM directly.
Updates DoS Source IP-Based maximum TPS.
This method has been deprecated. As of v11.3.0, there is separate DoS profile,
which is assigned to VS, so DoS settings are not associated with ASM directly.
Updates DoS Source IP-Based minimum TPS.
This method has been deprecated. As of v11.3.0, there is separate DoS profile,
which is assigned to VS, so DoS settings are not associated with ASM directly.
Updates DoS URL-Based TPS increase rate.
This method has been deprecated. As of v11.3.0, there is separate DoS profile,
which is assigned to VS, so DoS settings are not associated with ASM directly.
Updates DoS URL-Based maximum TPS.
This method has been deprecated. As of v11.3.0, there is separate DoS profile,
which is assigned to VS, so DoS settings are not associated with ASM directly.
Updates DoS URL-Based minimum TPS.
This method has been deprecated. As of v11.3.0, there is separate DoS profile,
which is assigned to VS, so DoS settings are not associated with ASM directly.
Updates DoS maximum prevention duration.
This method has been deprecated. As of v11.3.0, there is separate DoS profile,
which is assigned to VS, so DoS settings are not associated with ASM directly.
Adds DoS white IPs to the specified policy.
This method has been deprecated. As of v11.3.0, there is separate DoS profile,
which is assigned to VS, so DoS settings are not associated with ASM directly.
Removes DoS white IPs from the specified policy.
This method has been deprecated. As of v11.3.0, there is separate DoS profile,
which is assigned to VS, so DoS settings are not associated with ASM directly.
Get DoS settings.
This method has been deprecated. As of v11.3.0, there is separate DoS profile,
which is assigned to VS, so DoS settings are not associated with ASM directly.
Resets DoS settings to defaults.
Updates blocking flag.
Updates prerequisite expiration period flag.
Get blocking flag.
Updates violation blocking flag.
Gets violation blocking flag.
Import Policy as inactive.
Before calling import_policy, upload_policy should be done.
Once the policy is completely uploaded, you can import it.
Export Policy
The export_policy method exports the policy specified in parameter policy_name
and writes the file to the device's local disk. The policy is saved in a binary format.
This method is typically followed by a call to download_policy which gets this full path
filename as a parameter.
Export Human Readable Policy
The export_policy_xml method exports the policy specified in parameter policy_name
and writes the file to the device's local disk. The policy is saved in an XML format.
This method is typically followed by a call to download_policy which gets this full path
filename as a parameter.
Downloads the policy from the device.
The download_policy is typically called after having called to export_policy.
The parameter policy_name must be the same as used during export_policy.
The file is downloaded in chunks. Each chunk should be concatenated to the previous one
on the client side.
The return value has two fields:
- file_data: The relevant part of the content of the file
- chunk_type: Indicates the current chunk whether it is the first, middle, last chunk
or the current call includes the entire file.
Uploads the policy to the device.
In order to import a policy two things have to be done in this order
- call upload_policy
- call import_policy
upload_policy uploads the policy to the device to /var/tmp/ directory.
The filename is the name of the policy given in policy_name.
If the policy is big, it should be uploaded in chunks using a loop on the client side.
Gets the version information for this interface.
Set the "dynamic sessions in URL" for the specified policies.
Get the "dynamic sessions in URL" for the specified policies.
Uploads the the wsdl and attaches it to a specific xml profile of a policy.
This method is deprecated, please use WhiteHat Sentinel Vulnerabilities page in ASM GUI to configure predictable resource location.
Add predictable resource location
This method is deprecated, please use WhiteHat Sentinel Vulnerabilities page in ASM GUI to configure path traversal.
Set path traversal
This method is deprecated, please use WhiteHat Sentinel Vulnerabilities page in ASM GUI to configure response splitting.
Set HTTP response splitting
Determines whether the specified policies have a complex association type.
The Policy interface enables you to manipulate a policy.
This interface does not support transactions.