Secure Mobile Access 100 10.2 Administration Guide

Configuring Cross-Site Request Forgery Protection Settings

Cross-Site Request Forgery (CSRF) is configured independently for each Application Offloading portal. It provides a seamless solution and results in less false positives. Optionally, you can select the original Protection Method, URL Rewrite-based Protection Method.

To configure the settings for CSRF protection with the URL Rewrite-based Protection Method

  1. Navigate to Cross-Site Request Forgery (CSRF/XSRF) Protection section.
  2. In the Portals drop-down menu, select the Portal to which these CSRF protection settings apply. To make these CSRF settings the default for all portals, select Global.
  3. For Protection Mode, select the desired level of protection against CSRF attacks. You can select Detect Only to log these attacks or Prevent to log and block them. Select Disabled to disable CSRF protection on the portal.
  4. When finished, click Accept.

Was This Article Helpful?

Help us to improve our support portal

Techdocs Article Helpful form

Techdocs Article NOT Helpful form

  • Still can't find what you're looking for? Try our knowledge base or ask our community for more help.