It seems like your browser didn't download the required fonts. Please revise your security settings and try again.

Login Sign Up Contact & Support

United States – English (GMT-5)

Email Protection

Total Email Protection

Email Gateway Defense (Email Security)

Impersonation Protection (Sentinel)

Cloud Archiving Service

Security Awareness Training (PhishLine)

Managed Security Awareness Training (Managed Phishline)

Email Security Gateway

Domain Fraud Protection

Incident Response

Message Archiver

WAF-as-a-Service

Web Application Firewall

Load Balancer ADC

Vulnerability Manager

Vulnerability Remediation Service

WAF Control Center

Active DDoS Prevention

CloudGen Firewall

CloudGen Access

Network Access Client

Firewall Insights

Web Security Gateway

Web Security Agent

Firewall Policy Manager

Intronis Backup (ECHOplatform)

Cloud-to-Cloud Backup

RMM (Managed Workplace)

Site Security Scanner

Server Backup (Yosemite)

Campus Help Center / Reference

Onboarding Portal

Network Security

Support Services

Barracuda WAF-as-a-Service

Overview Documentation Training Certification Materials

Email Protection

Total Email Protection

Email Gateway Defense (Email Security)

Impersonation Protection (Sentinel)

Cloud Archiving Service

Security Awareness Training (PhishLine)

Managed Security Awareness Training (Managed Phishline)

Email Security Gateway

Domain Fraud Protection

Incident Response

Message Archiver

WAF-as-a-Service

Web Application Firewall

Load Balancer ADC

Vulnerability Manager

Vulnerability Remediation Service

WAF Control Center

Active DDoS Prevention

CloudGen Firewall

CloudGen Access

Network Access Client

Firewall Insights

Web Security Gateway

Web Security Agent

Firewall Policy Manager

Intronis Backup (ECHOplatform)

Cloud-to-Cloud Backup

RMM (Managed Workplace)

Site Security Scanner

Server Backup (Yosemite)

Campus Help Center / Reference

Onboarding Portal

Network Security

Support Services

Login Sign Up Contact & Support

United States – English (GMT-5)

Login Page Protection

Last updated on 2025-04-01 03:29:12

The login page is a critical entry point for an application and is frequently targeted by attackers. To safeguard against unauthorized access, it is essential to implement stringent security measures. Ensuring the security of the login page is vital for protecting user data and maintaining the integrity of the application. Barracuda WAF-as-a-Service can auto-detect and protect from various threats like Account Takeover, Credential Stuffing, Credential Spraying using advanced Machine Learning (ML) and Artificial Intelligence (AI) capabilities.

The ML and AI engine of Barracuda WAF-as-a-Service can auto-detect login pages of an application and provide security policy recommendations. Administrators can review and apply the recommended security policies to secure the application. This feature is available only for applications with the Premium license plan. Opting for the Premium license allows users to fully leverage these enhancements, ensuring they receive the highest level of security.

Prerequisite

Set Enable Advanced Bot Protection to ON for the application on the BOT PROTECTION > Dashboard page.

How it works

Note: Enable Advanced Bot Protection must be set to ON for the application.

The Barracuda WAF-as-a-Service monitors the traffic and identifies login URLs in the application.
Generates security policy recommendations for the URLs on the RECOMMENDATIONS page. Recommendations are displayed until they are applied or ignored.
Click Show Changes to view the recommended configuration settings and click Apply.
On the Application Profiles page, the URL is added with the specified configuration.