How to: Update and Redeploy a Security PolicyΒΆ

You can update a policy that has already been deployed and redeploy the policy from respective Policy page in SSL Orchestrator.

  1. Log in to BIG-IP Next Central Manager as admin, click the Workspace icon, click Security, and then click SSL Orchestrator.

  2. Click Policies from the left navigation panel.

  3. Make necessary changes to update the policy.

  4. Click Save.

  5. Click Deploy.

    Note: The Deploy button appears on the security policy screen only when you modify a security policy that has already been deployed through an association with an application. You can click the Deploy button only after you save the changes.

  6. Click Yes, Continue to deploy the changes to all applications attached with this policy.

    The Security policy is successfully deployed to the application.

Prerequisites

You need the id of the security policy that you want to update and redeploy. You must have received this id in the response when you created the security policy.

You can use GET https://{{cm_mgmt_ip}}//api/v1/spaces/default/security/policies to retrieve the list of security policies that you created in BIG-IP Next Central Manager.

Procedure

  1. To update an existing security policy, send a PUT request to the endpoint /api/v1/spaces/default/security/policies/{id}

    PUT https://{{cm_mgmt_ip}}/https://clouddocs.f5.com/api/v1/spaces/default/security/policies/{id}
    

    For {id}, specify the id of the the security policy that you want to update.

    The security policy is updated.

  2. To redeploy a security policy, send a POST request to the endpoint api/v1/spaces/default/security/ssl-orchestrator-policies/{id}/deployments

    POST https://{{cm_mgmt_ip}}/api/v1/spaces/default/security/ssl-orchestrator-policies/{id}/deployments
    

    For {id}, specify the id of the the security policy that you want to redeploy.

    The security policy is redeployed to the instances to which it was deployed before.