Advanced WAF integration features provide enterprise-level management, reporting, and compliance capabilities.

Role-based access control

Policy Admin roles can manage WAF Policies and Rules with full administrative privileges, including creating, editing, enabling, and disabling policies. This role provides complete control over WAF security configurations.

Policy Viewer roles have read-only access to WAF Policies and Rules, allowing security monitoring and analysis without the ability to modify configurations. This supports separation of duties in security operations.

Data export and reporting

Data Export functionality includes WAF Policy transactions in configurable export processes. Administrators can configure bot mitigation event exports to include WAF-related events, supporting compliance reporting and security analysis.

Event criteria configuration allows filtering of exported data based on policy types, threat categories, or time ranges. Field selection controls which transaction details are included in exports, supporting different reporting requirements.

Audit logs and compliance

Audit Logs automatically track all WAF policy changes, including policy creation, modification, enabling, and disabling actions. User action logging provides attribution for all policy modifications, supporting accountability and change management processes.

Rule modification tracking extends audit capabilities to individual rule changes, ensuring comprehensive visibility into security configuration changes over time.