4.06

Recognize ASM specific user roles and their permissions

• • Recognize differences between user roles/permissions
• • Recognize ASM specific user roles

4.05

Evaluate ASM system performance issues and determine appropriate mitigation strategies

• • Correlate performance issues with ASM policy changes based on security policy history information and system performance graphs

4.04

Identify and interpret ASM performance metrics

• • Understand the impact of ASM iRules on performance.
• • Understand the impact of traffic spikes on ASM performance and available mitigation strategies

4.03

Examine policy objects to determine why traffic is or is not generating violations

• • Examine Security Event Logs and ASM configurations to determine expected violations based on the logging profile assigned to the virtual server

4.02

Understand the impact of learning, alarm, and blocking settings on traffic enforcement

• • Ensure that the security policy is inspecting web application traffic (application is functional and the policies are parsing the traffic)

4.01

Evaluate ASM policy performance issues and determine appropriate mitigation strategies

• • Analyze performance graphs and statistics along with ASM configurations to determine the root cause of performance issues and appropriate remediation to the configuration based on Guaranteed Logging

3.04

Decide the appropriate method for determining the success of attack mitigation

• • Choose an appropriate user defined attack signature to respond to particular traffic

3.03

Determine the appropriate mitigation for a given attack or vulnerability

• • Take appropriate action on reported security violations by end users and application developers
• • Modify ASM policy to adapt to attacks