Web App Vulnerability Remediation

This workflow create/selects a ASM Policy in F5 WAF Device to assess and remediate vulnerabilities

To run this workflow:
  1. Go to Menu > ADC+ > AUTOMATION > Workflow Catalog > View/Run
  2. Click the F5 BIG IP ASM category on the View/Run Workflows page.
  3. On the popup window, hover the mouse over the Web App Vulnerability Remediation workflow.
    The Run and Schedule buttons are displayed.
  4. Click .
    The Request > Web App Vulnerability Remediation :: FormBuilder page is displayed.
  5. Enter/select the Device and ASM Policy details.
    Table 1. Device and ASM Policy Section - Field and Description Table
    Field Description
    *Device Name Select a device from the dropdown list for which the policy has to be created.
    *ASM Policy Options Options to create a ASM policy. The options are:
    • Create New - select this option to create a policy newly and enter/select the following policy details:

      • ASM Policy Name - enter the name for the policy.

      • Enforcement Mode - select a enforcement mode from the dropdown list.

      • Do you want to associate a Parent Policy - select Yes to associate a parent policy. Otherwise select No (default option).

      • Do you want to associate VIPs to the Policy - select Yes to associate VIPs to the policy, and then select the desired VIPs from the Virtual Servers dropdown option. Otherwise select No (default option).

    • Select Existing - select this option to use the already created policy, and then select a policy from ASM Policy dropdown option.
  6. Select the inputs for the Upload Vulnerability Scan Report.
    Table 2. Upload Vulnerability Scan Report Section - Field and Description Table
    Field Description
    *Assessment Tool Select a assement tool from the dropdown list.
    *Vulnerability Scan report Upload a vulnerability scan report in the .xml format.
  7. Enter the Email ID in the Send Assessment Report section.
    Once the workflow is complete, the generated report will be sent to this email ID. More than one email ID can be added with comma separated.
  8. Click Submit.
    The Confirmation dialog box is displayed.
  9. To save this form so you can edit it later, click Save Draft and then click OK.
    The form will be saved as Open request under Request > My Request.

    OR

    To submit the form, click OK.

    The validation starts automatically and reaches the Review stage.
    Note:
    • If there is any failure at this stage, start a new request by providing the correct data.
    • Alternatively, select the failed request and clone it. Update the correct input data in the form input, and submit the workflow again.
  10. View the vulnerability status under the Vulnerability Stats tab.
    Tip: The view of this report can be changed from Pie chart or Donut view by selecting the option from the View by drop-down option.
  11. Click Submit.
  12. View the vulnerability report under the Vulnerability Report tab.
    The report can be downloaded by clicking the Download () button.
  13. Click the Submit button.
    The workflow reached the Choice to Remediate stage.
  14. Select the option to resolve the vulnerabilities automatically or not.
    If you select

    • Yes, the identified vulnerabilities will be resolved.

    • No, the vulnerabilities will not be resolved.

  15. Click Remediate Now.
  16. View the remediation summary under the Remediation Summary tab.
    The report can be downloaded by clicking the Download () button.
  17. It takes a while for the workflow completion and the email is triggered with remediation report.
    Note: The validation stages are shown in the left side of the screen. To view a validation stage, click on the respective stage.