nerdexam
F5

101 · Question #146

There are many user roles configurable on the BIG-IP ASM System. Which of the following user roles have access to make changes to ASM policies? (Choose 3)

The correct answer is C. Administrator D. Web Application Security Editor E. Web Application Security Administrator. On BIG-IP ASM, only the Administrator, Web Application Security Editor, and Web Application Security Administrator roles have the necessary permissions to modify ASM security policies.

Section 2: F5 Solutions and Technology

Question

There are many user roles configurable on the BIG-IP ASM System. Which of the following user roles have access to make changes to ASM policies? (Choose 3)

Options

  • AGuest
  • BOperator
  • CAdministrator
  • DWeb Application Security Editor
  • EWeb Application Security Administrator

How the community answered

(31 responses)
  • A
    6% (2)
  • B
    3% (1)
  • C
    90% (28)

Why each option

On BIG-IP ASM, only the Administrator, Web Application Security Editor, and Web Application Security Administrator roles have the necessary permissions to modify ASM security policies.

AGuest

Guest is a read-only role that can view configuration and statistics but cannot make any changes to ASM policies or system settings.

BOperator

Operator can enable or disable nodes and pool members and manage connections, but does not have permission to edit or modify ASM security policies.

CAdministratorCorrect

The Administrator role has full system access including the ability to create, edit, and delete ASM policies. The Web Application Security Editor (D) can modify existing ASM policies and their settings. The Web Application Security Administrator (E) has elevated ASM-specific privileges including policy management and system-level ASM configuration.

DWeb Application Security EditorCorrect
EWeb Application Security AdministratorCorrect

Concept tested: BIG-IP ASM user role permissions for policy management

Source: https://techdocs.f5.com/en-us/bigip-15-1-0/big-ip-systems-user-account-administration/user-roles.html

Topics

#user roles#ASM access control#administrator roles#web application security

Community Discussion

No community discussion yet for this question.

Full 101 Practice