Real-time API cybersecurity
API Security Enforcer provides real-time API cybersecurity to stop hackers. Violations are immediately blocked, and attack information is sent to the ABS engine. Real time API Cyber Security is activated only when ASE firewall is enabled.
Enable API cybersecurity
To enable API security, enter the following command:
/opt/pingidentity/ase/bin/cli.sh -u admin -p admin enable_firewall Firewall is now enabled
After enabling API Security, enter the following CLI command to verify cybersecurity is enabled:
/opt/pingidentity/ase/bin/cli.sh status Ping Identity Inc., API Security Enforcer status : started http/ws : port 80 https/wss : port 443 firewall : enabled abs : disabled abs attack : disabled audit : enabled ase detected attack : disabled attack list memory : configured 128.00 MB, used 25.60 MB, free 102.40 MB
Disable API cybersecurity
To disable ASE’s cybersecurity feature, type the following CLI command:
/opt/pingidentity/ase/bin/cli.sh -u admin -p admin disable_firewall Firewall is now disabled
After disabling ASE’s cybersecurity feature, enter the following CLI command to verify that cybersecurity is disabled:
/opt/pingidentity/ase/bin/cli.sh status Ping Identity Inc., API Security Enforcer status : started http/ws : port 80 https/wss : port 443 firewall : disabled abs : disabled abs attack : disabled audit : enabled ase detected attack : disabled attack list memory : configured 128.00 MB, used 25.60 MB, free 102.40 MB