After you have configured and applied auto-learning profiles, you can use them to collect data for an auto-learning report, and to suggest a configuration.
1. Enable the server policy where you have selected the auto-learning policy for Auto Learn Profile .
2. Route traffic to or through the FortiWeb appliance, depending on your operation mode.
3. Wait for the FortiWeb appliance to gather data.
Time required varies by the rate of legitimate hits for each URL, the parameters that are included with each hit, and the percentage of hits that are attack attempts detected by attack signatures. You can gauge traffic volumes and hits using the Policy Summary widget (see Real Time Monitor widget).
You can pause auto-learning’s data gathering if necessary (see Pausing auto-learning for a URL).
4. Gauge progress by periodically reviewing the auto-learning report, which FortiWeb keeps up-to-date during auto-learning (see Viewing auto-learning reports and Generating a profile from auto-learning data). If parameters are missing, auto-learning is not complete.
5. If there is an unusual number of attacks, there are false positives, or if some auto-learning data is incorrect, you can do one of the following:
6. Continue with Generating a profile from auto-learning data.