Configuring Cross-Site Request Forgery Protection Settings
Cross-Site Request Forgery (CSRF) is configured independently for each Application Offloading portal. It provides a seamless solution and results in less false positives. Optionally, you can select the original Protection Method, URL Rewrite-based Protection Method.
To configure the settings for CSRF protection with the URL Rewrite-based Protection Method
- Navigate to Cross-Site Request Forgery (CSRF/XSRF) Protection section.
- In the Portals drop-down menu, select the Portal to which these CSRF protection settings apply. To make these CSRF settings the default for all portals, select Global.
- For Protection Mode, select the desired level of protection against CSRF attacks. You can select Detect Only to log these attacks or Prevent to log and block them. Select Disabled to disable CSRF protection on the portal.
- When finished, click Accept.
Was This Article Helpful?
Help us to improve our support portal