Task 2: Configuring Bot Mitigation Modules

GoalSetup Bot Mitigation using FortiAppSec Cloud
TaskEnable and Configure all the Bot Mitigation Modules on FortiAppSec CLoud
Verify task completionIf successful, Simulated Bot Traffic will be flagged and blocked on FortiAppSec CLoud

Enable Bot Mitigation Modules

Details

If you lose access to the FortiAppSec Console, open an Incognito browser and use the link below to log back in:

https://customersso1.fortinet.com/saml-idp/proxy/demo_sallam_okta/login/
  1. From the FortiAppSec Cloud Console select your application and in the left pane, select Waf > ADD MODULES. Scroll down and turn on Known Bots, Threshold Based Detection, Biometric Based Detection and Bot Deception under Bot Mitigation.

Enable-Bot Enable-Bot

  1. Now the Bot Mitigation tools we need to configure should show up on the left side of the screen.

Configure Known Bots Module

  1. Under Bot Mitigaton , select Known Bots

  2. Change the value in the Action box to Alert and Deny , enable the known Bad Bots toggle switch Then Click Save

    Known-Bots Known-Bots

Configure Threshold Based Detection Module

  1. Under Bot Mitigaton , select Threshold Based Detection

  2. Change the value in the Action box to Alert and Deny , enable the Crawler, Vulnerability Scanning, Slow Attack,Content Scraping,Credential Based Brute Force toggle switch. Then Click Save

Threshold Based Threshold Based

Configure Biometrics Based Detection

  1. Under Bot Mitigaton , select Biometrics Based Detection

  2. click on Create Rule, type in photo in the URL box, Click OK to continue. Then Click Save

Biometric Biometric

Configure Bot Deception

  1. Under Bot Mitigaton , select Bot Deception

  2. click on Create Rule, type in about in the URL box, Click OK to continue. Then Click Save

Bot Deception Bot Deception