diff --git a/docker/conf/modsecurity/crs/RESPONSE-999-EXCLUSION-RULES-AFTER-CRS.conf b/docker/conf/modsecurity/crs/RESPONSE-999-EXCLUSION-RULES-AFTER-CRS.conf
index 609a3083c8e2b88600d0607ee606e81a056a66e0..89de3026998497c41ed4971919973139d6c12173 100644
--- a/docker/conf/modsecurity/crs/RESPONSE-999-EXCLUSION-RULES-AFTER-CRS.conf
+++ b/docker/conf/modsecurity/crs/RESPONSE-999-EXCLUSION-RULES-AFTER-CRS.conf
@@ -21,6 +21,11 @@ SecRuleRemoveById 941180
 # headers (that specify a JSON-LD profile), just disable it.
 SecRuleRemoveById 920600
 
+# We've been unable to get ModSecurity to accept JSON-LD
+# requests with a Content-Type that includes a "profile" spec,
+# so let's just disable that rule.
+SecRuleRemoveById 920470
+
 # ModSec Rule Exclusion: 920273 : Invalid character in request (outside of very strict set)
 # ModSec Rule Exclusion: 942432 : Restricted SQL Character Anomaly Detection (args): 
 # number of special characters exceeded (2) (severity:  NONE/UNKOWN)