New-AzApplicationGatewayFirewallPolicy:
Line |
2 | New-AzApplicationGatewayFirewallPolicy `
| ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
| RuleGroup 'TestResource-OWASP-Override' cannot be configured since it does not exist for Application Gateway Firewall in context ''.
StatusCode: 400
ReasonPhrase: Bad Request
ErrorCode: ApplicationGatewayFirewallUnknownRuleGroup
ErrorMessage: RuleGroup 'TestResource-OWASP-Override' cannot be configured since it does not exist for Application Gateway Firewall in context ''.
OperationID : 27c8968b-b883-4fb3-8184-a2750da6f210
Environment data
Name Value
---- -----
PSVersion 7.0.3
PSEdition Core
GitCommitId 7.0.3
OS Darwin 19.6.0 Darwin Kernel Version 19.6.0: Mon Aug 31 22:12:52 PDT 2020; root:xnu-6153.141.2~1/RELEASE_X86_64
Platform Unix
PSCompatibleVersions {1.0, 2.0, 3.0, 4.0…}
PSRemotingProtocolVersion 2.3
SerializationVersion 1.1.0.1
WSManStackVersion 3.0
DEBUG: ============================ HTTP REQUEST ============================
HTTP Method:
GET
Absolute Uri:
https://management.azure.com/subscriptions/<subscription id>/resourceGroups/TestResource/providers/Microsoft.Network/ApplicationGatewayWebApplicationFirewallPolicies/TestResource-EmbargoPolicy?api-version=2020-06-01
Headers:
x-ms-client-request-id : 65faf393-8b54-4b39-baba-19948c51cd0f
Accept-Language : en-US
Body:
DEBUG: ============================ HTTP RESPONSE ============================
Status Code:
NotFound
Headers:
Cache-Control : no-cache
Pragma : no-cache
x-ms-failure-cause : gateway
x-ms-request-id : 6089ee9f-3e33-4f9a-9991-aacaea91b069
x-ms-correlation-request-id : 6089ee9f-3e33-4f9a-9991-aacaea91b069
x-ms-routing-request-id : WESTUS2:20201029T191803Z:6089ee9f-3e33-4f9a-9991-aacaea91b069
Strict-Transport-Security : max-age=31536000; includeSubDomains
X-Content-Type-Options : nosniff
Date : Thu, 29 Oct 2020 19:18:03 GMT
Body:
{
"error": {
"code": "ResourceNotFound",
"message": "The Resource 'Microsoft.Network/applicationGatewayWebApplicationFirewallPolicies/TestResource-EmbargoPolicy' under resource group 'TestResource' was not found. For more details please go to https://aka.ms/ARMResourceNotFoundFix"
}
}
DEBUG: ============================ HTTP REQUEST ============================
HTTP Method:
PUT
Absolute Uri:
https://management.azure.com/subscriptions/<removed subscription id>/resourceGroups/TestResource/providers/Microsoft.Network/ApplicationGatewayWebApplicationFirewallPolicies/TestResource-EmbargoPolicy?api-version=2020-06-01
Headers:
x-ms-client-request-id : 9e3f5b92-44ab-41de-ab81-f600c8429b3a
Accept-Language : en-US
Body:
{
"properties": {
"policySettings": {
"state": "Enabled",
"mode": "Prevention",
"requestBodyCheck": false,
"maxRequestBodySizeInKb": 128,
"fileUploadLimitInMb": 100
},
"customRules": [],
"managedRules": {
"exclusions": [],
"managedRuleSets": [
{
"ruleSetType": "OWASP",
"ruleSetVersion": "3.0",
"ruleGroupOverrides": [
{
"ruleGroupName": "TestResource-OWASP-Override",
"rules": [
{
"ruleId": "920300",
"state": "Disabled"
}
]
}
]
},
{
"ruleSetType": "Microsoft_BotManagerRuleSet",
"ruleSetVersion": "0.1",
"ruleGroupOverrides": []
}
]
}
},
"location": "westus"
}
DEBUG: ============================ HTTP RESPONSE ============================
Status Code:
BadRequest
Headers:
Cache-Control : no-cache
Pragma : no-cache
x-ms-request-id : fd36e498-93b5-48ad-901d-fe17ed46a08a
x-ms-correlation-request-id : 91c421a8-b7fb-4ea4-8966-b62890d2ae7e
x-ms-arm-service-request-id : 3889aec5-c10a-4e3f-9ccc-125b891e81ce
Strict-Transport-Security : max-age=31536000; includeSubDomains
Server : Microsoft-HTTPAPI/2.0,Microsoft-HTTPAPI/2.0
x-ms-ratelimit-remaining-subscription-writes: 1199
x-ms-routing-request-id : WESTUS2:20201029T191805Z:91c421a8-b7fb-4ea4-8966-b62890d2ae7e
X-Content-Type-Options : nosniff
Date : Thu, 29 Oct 2020 19:18:04 GMT
Body:
{
"error": {
"code": "ApplicationGatewayFirewallUnknownRuleGroup",
"message": "RuleGroup 'TestResource-OWASP-Override' cannot be configured since it does not exist for Application Gateway Firewall in context ''.",
"details": []
}
}
New-AzApplicationGatewayFirewallPolicy:
Line |
2 | New-AzApplicationGatewayFirewallPolicy `
| ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
| RuleGroup 'TestResource-OWASP-Override' cannot be configured since it does not exist for Application Gateway Firewall in context ''.
StatusCode: 400
ReasonPhrase: Bad Request
ErrorCode: ApplicationGatewayFirewallUnknownRuleGroup
ErrorMessage: RuleGroup 'TestResource-OWASP-Override' cannot be configured since it does not exist for Application Gateway Firewall in context ''.
OperationID : fd36e498-93b5-48ad-901d-fe17ed46a08a
DEBUG: AzureQoSEvent: CommandName - New-AzApplicationGatewayFirewallPolicy; IsSuccess - False; Duration - 00:00:01.6138003;; Exception - Microsoft.Azure.Commands.Network.Common.NetworkCloudException: RuleGroup 'TestResource-OWASP-Override' cannot be configured since it does not exist for Application Gateway Firewall in context ''.
StatusCode: 400
ReasonPhrase: Bad Request
ErrorCode: ApplicationGatewayFirewallUnknownRuleGroup
ErrorMessage: RuleGroup 'TestResource-OWASP-Override' cannot be configured since it does not exist for Application Gateway Firewall in context ''.
OperationID : fd36e498-93b5-48ad-901d-fe17ed46a08a
---> Microsoft.Rest.Azure.CloudException: RuleGroup 'TestResource-OWASP-Override' cannot be configured since it does not exist for Application Gateway Firewall in context ''.
at Microsoft.Azure.Management.Network.WebApplicationFirewallPoliciesOperations.CreateOrUpdateWithHttpMessagesAsync(String resourceGroupName, String policyName, WebApplicationFirewallPolicy parameters, Dictionary`2 customHeaders, CancellationToken cancellationToken)
at Microsoft.Azure.Management.Network.WebApplicationFirewallPoliciesOperationsExtensions.CreateOrUpdateAsync(IWebApplicationFirewallPoliciesOperations operations, String resourceGroupName, String policyName, WebApplicationFirewallPolicy parameters, CancellationToken cancellationToken)
at Microsoft.Azure.Management.Network.WebApplicationFirewallPoliciesOperationsExtensions.CreateOrUpdate(IWebApplicationFirewallPoliciesOperations operations, String resourceGroupName, String policyName, WebApplicationFirewallPolicy parameters)
at Microsoft.Azure.Commands.Network.NewAzureApplicationGatewayFirewallPolicyCommand.CreateApplicationGatewayFirewallPolicy()
at Microsoft.Azure.Commands.Network.NewAzureApplicationGatewayFirewallPolicyCommand.<>c__DisplayClass36_0.<Execute>b__0()
at Microsoft.WindowsAzure.Commands.Utilities.Common.AzurePSCmdlet.ConfirmAction(Boolean force, String continueMessage, String processMessage, String target, Action action, Func`1 useShouldContinue)
at Microsoft.Azure.Commands.Network.NewAzureApplicationGatewayFirewallPolicyCommand.Execute()
at Microsoft.Azure.Commands.Network.NetworkBaseCmdlet.ExecuteCmdlet()
--- End of inner exception stack trace ---
at Microsoft.Azure.Commands.Network.NetworkBaseCmdlet.ExecuteCmdlet()
at Microsoft.WindowsAzure.Commands.Utilities.Common.AzurePSCmdlet.ProcessRecord();
DEBUG: Finish sending metric.
DEBUG: 12:18:05 PM - NewAzureApplicationGatewayFirewallPolicyCommand end processing.
Error output
HistoryId: 85
RequestId :
Message : RuleGroup 'TestResource-OWASP-Override' cannot be configured since it does not exist for Application Gateway Firewall in context ''.
StatusCode: 400
ReasonPhrase: Bad Request
ErrorCode: ApplicationGatewayFirewallUnknownRuleGroup
ErrorMessage: RuleGroup 'TestResource-OWASP-Override' cannot be configured since it does not exist for Application Gateway Firewall in
context ''.
OperationID : fd36e498-93b5-48ad-901d-fe17ed46a08a
ServerMessage :
ServerResponse :
RequestMessage :
InvocationInfo : {New-AzApplicationGatewayFirewallPolicy}
Line : New-AzApplicationGatewayFirewallPolicy `
Position : At line:2 char:3
+ New-AzApplicationGatewayFirewallPolicy `
+ ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
StackTrace : at Microsoft.Azure.Commands.Network.NetworkBaseCmdlet.ExecuteCmdlet()
at Microsoft.WindowsAzure.Commands.Utilities.Common.AzurePSCmdlet.ProcessRecord()
HistoryId : 85
Description
Setting Managed RuleGroupOverride results in ApplicationGatewayFirewallUnknownRuleGroup error
Steps to reproduce
Error Response
Environment data
Module versions
Debug output
Error output