101 · Question #146
There are many user roles configurable on the BIG-IP ASM System. Which of the following user roles have access to make changes to ASM policies? (Choose 3)
The correct answer is C. Administrator D. Web Application Security Editor E. Web Application Security Administrator. On BIG-IP ASM, only the Administrator, Web Application Security Editor, and Web Application Security Administrator roles have the necessary permissions to modify ASM security policies.
Question
There are many user roles configurable on the BIG-IP ASM System. Which of the following user roles have access to make changes to ASM policies? (Choose 3)
Options
- AGuest
- BOperator
- CAdministrator
- DWeb Application Security Editor
- EWeb Application Security Administrator
How the community answered
(31 responses)- A6% (2)
- B3% (1)
- C90% (28)
Why each option
On BIG-IP ASM, only the Administrator, Web Application Security Editor, and Web Application Security Administrator roles have the necessary permissions to modify ASM security policies.
Guest is a read-only role that can view configuration and statistics but cannot make any changes to ASM policies or system settings.
Operator can enable or disable nodes and pool members and manage connections, but does not have permission to edit or modify ASM security policies.
The Administrator role has full system access including the ability to create, edit, and delete ASM policies. The Web Application Security Editor (D) can modify existing ASM policies and their settings. The Web Application Security Administrator (E) has elevated ASM-specific privileges including policy management and system-level ASM configuration.
Concept tested: BIG-IP ASM user role permissions for policy management
Source: https://techdocs.f5.com/en-us/bigip-15-1-0/big-ip-systems-user-account-administration/user-roles.html
Topics
Community Discussion
No community discussion yet for this question.