az network application-gateway waf-policy managed-rule exclusion

Manage OWASP CRS exclusions that are applied on a WAF policy managed rules.

Commands

az network application-gateway waf-policy managed-rule exclusion add

Add an OWASP CRS exclusion rule to the WAF policy managed rules.

az network application-gateway waf-policy managed-rule exclusion list

List all OWASP CRS exclusion rules that are applied on a Waf policy managed rules.

az network application-gateway waf-policy managed-rule exclusion remove

List all OWASP CRS exclusion rules that are applied on a Waf policy managed rules.

az network application-gateway waf-policy managed-rule exclusion add

Add an OWASP CRS exclusion rule to the WAF policy managed rules.

az network application-gateway waf-policy managed-rule exclusion add --match-variable {RequestArgNames, RequestCookieNames, RequestHeaderNames}
                                                                     --policy-name
                                                                     --resource-group
                                                                     --selector
                                                                     --selector-match-operator {Contains, EndsWith, Equals, EqualsAny, StartsWith}
                                                                     [--subscription]

Required Parameters

--match-variable

The variable to be excluded.

accepted values: RequestArgNames, RequestCookieNames, RequestHeaderNames
--policy-name

The name of the web application firewall policy.

--resource-group -g

Name of resource group. You can configure the default group using az configure --defaults group=<name>.

--selector

When matchVariable is a collection, operator used to specify which elements in the collection this exclusion applies to.

--selector-match-operator

When matchVariable is a collection, operate on the selector to specify which elements in the collection this exclusion applies to.

accepted values: Contains, EndsWith, Equals, EqualsAny, StartsWith

Optional Parameters

--subscription

Name or ID of subscription. You can configure the default subscription using az account set -s NAME_OR_ID.

az network application-gateway waf-policy managed-rule exclusion list

List all OWASP CRS exclusion rules that are applied on a Waf policy managed rules.

az network application-gateway waf-policy managed-rule exclusion list --policy-name
                                                                      --resource-group
                                                                      [--query-examples]
                                                                      [--subscription]

Required Parameters

--policy-name

The name of the web application firewall policy.

--resource-group -g

Name of resource group. You can configure the default group using az configure --defaults group=<name>.

Optional Parameters

--query-examples

Recommend JMESPath string for you. You can copy one of the query and paste it after --query parameter within double quotation marks to see the results. You can add one or more positional keywords so that we can give suggestions based on these key words.

--subscription

Name or ID of subscription. You can configure the default subscription using az account set -s NAME_OR_ID.

az network application-gateway waf-policy managed-rule exclusion remove

List all OWASP CRS exclusion rules that are applied on a Waf policy managed rules.

az network application-gateway waf-policy managed-rule exclusion remove --policy-name
                                                                        --resource-group
                                                                        [--subscription]

Required Parameters

--policy-name

The name of the web application firewall policy.

--resource-group -g

Name of resource group. You can configure the default group using az configure --defaults group=<name>.

Optional Parameters

--subscription

Name or ID of subscription. You can configure the default subscription using az account set -s NAME_OR_ID.