Fortinet black logo

Administration Guide

Configuring bot mitigation policy

Configuring bot mitigation policy

Once you have configured the bot deception policy, the biometrics based detection rule, threshold based detection rule, and known bots rules, you can integrate them in a bot mitigation policy, and apply the policy in the web protection profile for bot mitigation. Two predefined mitigation policies are available here.

To configure a bot mitigation policy

  1. Go to Bot Mitigation > Bot Mitigation Policy.
  2. Click Create New.
  3. Configure these settings:

    Name

    Type a unique name for the policy that can be referenced in other parts of the configuration.

    Bot Deception

    Select a bot deception policy from the drop down list.

    Biometrics Based Detection

    Select a biometrics based detection rule from the drop down list.

    Threshold Based Detection

    Select a threshold based detection rule from the drop down list.

    Known Bots

    Select a predefined or newly created known bots rule from the drop down list.

    Exception

    Select the exception policy which specifies the elements to be exempted from the attack scan.

  4. Click OK.

To select a bot mitigation policy in a web protection profile

  1. Go to Policy > Web Protection Profile.
  2. To access this part of the web UI, your administrator's account access profile must have Read and Write permission to items in the Web Protection Configuration category. For details, see Permissions.

  3. Select the Inline Protection Profile tab.
  4. Select an existing web protection profile to which you want to include the bot mitigation policy.
  5. Click Edit.
  6. For Bot Mitigation > Bot Mitigation Policy, select the bot mitigation policy from the drop down list.

    Note: To view details about a selected bot mitigation policy, click the view icon next to the drop down list.

  7. Click OK.

Configuring bot mitigation policy

Once you have configured the bot deception policy, the biometrics based detection rule, threshold based detection rule, and known bots rules, you can integrate them in a bot mitigation policy, and apply the policy in the web protection profile for bot mitigation. Two predefined mitigation policies are available here.

To configure a bot mitigation policy

  1. Go to Bot Mitigation > Bot Mitigation Policy.
  2. Click Create New.
  3. Configure these settings:

    Name

    Type a unique name for the policy that can be referenced in other parts of the configuration.

    Bot Deception

    Select a bot deception policy from the drop down list.

    Biometrics Based Detection

    Select a biometrics based detection rule from the drop down list.

    Threshold Based Detection

    Select a threshold based detection rule from the drop down list.

    Known Bots

    Select a predefined or newly created known bots rule from the drop down list.

    Exception

    Select the exception policy which specifies the elements to be exempted from the attack scan.

  4. Click OK.

To select a bot mitigation policy in a web protection profile

  1. Go to Policy > Web Protection Profile.
  2. To access this part of the web UI, your administrator's account access profile must have Read and Write permission to items in the Web Protection Configuration category. For details, see Permissions.

  3. Select the Inline Protection Profile tab.
  4. Select an existing web protection profile to which you want to include the bot mitigation policy.
  5. Click Edit.
  6. For Bot Mitigation > Bot Mitigation Policy, select the bot mitigation policy from the drop down list.

    Note: To view details about a selected bot mitigation policy, click the view icon next to the drop down list.

  7. Click OK.