nerdexam
F5

101 · Question #184

The Web Application Security Administrator user role can perform which of the following functions? (Choose 2)

The correct answer is C. Create new Attack signature sets E. Configure Advanced options within the BIG-IP ASM System. The Web Application Security Administrator role has authority over ASM-specific objects like attack signature sets and advanced ASM options, but cannot manage BIG-IP LTM objects such as HTTP class profiles or virtual server assignments.

Section 2: F5 Solutions and Technology

Question

The Web Application Security Administrator user role can perform which of the following functions? (Choose 2)

Options

  • AModify HTTP class profiles
  • BCreate new HTTP class profiles
  • CCreate new Attack signature sets
  • DAssign HTTP class profiles to virtual servers
  • EConfigure Advanced options within the BIG-IP ASM System

How the community answered

(59 responses)
  • A
    3% (2)
  • B
    2% (1)
  • C
    93% (55)
  • D
    2% (1)

Why each option

The Web Application Security Administrator role has authority over ASM-specific objects like attack signature sets and advanced ASM options, but cannot manage BIG-IP LTM objects such as HTTP class profiles or virtual server assignments.

AModify HTTP class profiles

Modifying HTTP class profiles is a LTM (Local Traffic Manager) configuration task that requires the Administrator or Resource Administrator role, not the ASM-specific role.

BCreate new HTTP class profiles

Creating new HTTP class profiles is also an LTM-level function outside the scope of the Web Application Security Administrator role.

CCreate new Attack signature setsCorrect

Creating new attack signature sets is an ASM-level administrative function that falls within the scope of the Web Application Security Administrator role.

DAssign HTTP class profiles to virtual servers

Assigning HTTP class profiles to virtual servers involves LTM object management, which is restricted to roles with broader system-level access.

EConfigure Advanced options within the BIG-IP ASM SystemCorrect

Configuring advanced options within the BIG-IP ASM System is a core responsibility of this role, as it is scoped to ASM policy and configuration management.

Concept tested: BIG-IP ASM Web Application Security Administrator role permissions

Source: https://techdocs.f5.com/kb/en-us/products/big-ip_asm/manuals/product/asm-implementations-11-6-0/1.html

Topics

#ASM user roles#Web Application Security Administrator#RBAC#BIG-IP ASM

Community Discussion

No community discussion yet for this question.

Full 101 Practice