Re: Is there are forti product that monitors the s...

shafiq23 · 10-20-2025

Description This article describes how to configure Automation to send an alert email when an OWASP Top 10 category is matched in the attack log. Scope FortiWeb. Solution When a signature is triggered or any other relevant attack log is generated, it...

shafiq23 · 10-20-2025

Description This article describes how to configure request redirection when a specified cookie is not present in an HTTP request using a LUA script. Scope FortiWeb. Solution Requirement:To redirect the client’s request to a landing or login page whe...

shafiq23 · 09-19-2025

Description This article describes how to use curl or Postman to export FortiADC configuration through the RESTful API. Scope FortiADC. Solution Prerequisite:Create a REST API administrator for the token:Creating REST API Administrator Users RESTful ...

shafiq23 · 09-17-2025

Description This article describes how to exclude a specific URL from the authentication page(Site Publish) in FortiWeb using HTTP content routing. The goal is to allow certain URLs to bypass the Site Publish login page while still requiring authenti...

shafiq23 · 09-17-2025

Description This article describes how to configure a custom rule in FortiAppSec Cloud WAF to implement URL/API endpoint rate limiting. The goal of this rule is to limit the number of requests from a single client IP within a specified time. Scope Fo...

shafiq23 · 09-18-2025

Hello @Mohammedsalhi Could you try only "/Login.asp" in the Authentication URL instead of including HTTP request params?User Tracking Related article

shafiq23 · 07-17-2025

Hi @andrewr9072, You may use this curl command sample to send the POST request. curl -ik -H "Accept: application/json" -H "Content-Type: application/json" -H "APITOKEN: " -X POST https:///api/system_certificate_local/automated -d payload.jsonUse JSON...

shafiq23 · 06-19-2025

Hello @filiaks1, ML based bot detection is also a good approach to detect deviation of HTTP error responses(return codes larger than 400). Previous sample custom policy is used to statically block occurrences of HTTP 5XX responses - it might block le...

shafiq23 · 06-16-2025

Hi @filiaks1, ML based Anomaly detection focuses on API request deviation on learned API traffic. Discovering missing authorization header will be handle by other module such as Custom Policy where you can define if Authorization header is missing an...

shafiq23 · 06-16-2025

Hi @filiaks1, Yes, FortiWeb will generate an OpenAPI schema model(viewable in GUI) once enough API data is learned. If you would like to export it, you can download either in JSON or YAML format. Thanks. Regards, Shafiq

User Statistics

User Activity

Technical Tip: How to create an alert email based on OWASP Top 10 category

Technical Tip: How to redirect request when specified cookies are not present using a LUA script

Technical Tip: Export configuration backup file via RESTful API

Technical Tip: Excluding specific URLs from Site Publish in FortiWeb

Technical Tip: How to rate limit source IP access to application URL within specified time

Re: FortiWeb User Tracking not matching the requested URL

Re: FortiADC Automated Cert Through API