---
title: ABS users for API reports
description: API Behavioral Security (ABS) has two types of users to access the application programming interface (API) reports and PingIntelligence Dashboard.
component: pingintelligence
version: 5.2
page_id: pingintelligence:pingintelligence_reference_guide:pingintelligence_abs_users_api_reports
canonical_url: https://docs.pingidentity.com/pingintelligence/5.2/pingintelligence_reference_guide/pingintelligence_abs_users_api_reports.html
revdate: April 3, 2024
---

# ABS users for API reports

API Behavioral Security (ABS) has two types of users to access the application programming interface (API) *(tooltip: \<div class="paragraph">
\<p>A specification of interactions available for building software to access an application or service.\</p>
\</div>)* reports and PingIntelligence Dashboard.

The API reports displayed is based on the type of user accessing the reports. The two users are:

* Admin user: An Admin user has complete access to API reports. All the cookies, tokens, API keys, and Username are visible in the reports. Use the following headers in the API report URL to access API reports as an Admin user:

  * `x-abs-ak (access key header)`

  * `x-abs-sk (secret key header)`

* Restricted user: A Restricted user has limited access to the API reports. The Restricted user can view the API reports however the cookies, tokens, and API keys are obfuscated. Use the following headers in the API report URL to access API reports as an Admin user:

  * `x-abs-ak-ru (access key header)`

  * `x-abs-sk-ru (secret key header)`

  The restricted user can access all the API Reports except:

  * Threshold API

  * Cookie, OAuth2 Token, Internet Protocol (IP) *(tooltip: \<div class="paragraph">
    \<p>The method by which data is sent across the internet from the source host to the destination host.\</p>
    \</div>)*, API Key, and Username Forensics APIs

For a complete list of external REST APIs, see [ABS External REST APIs](pingintelligence_abs_external_rest_api.html).

The default access and secret key are configured in the `opt/pingidentity/mongo/abs_init.js` file. Following is a snippet of the `abs_init.js` showing the default passwords for both type of users.

```
db.auth_info.insert({
 "access_key": "abs_ak",
 "secret_key": "abs_sk",
 "access_key_ru" : "abs_ak_ru",
 "secret_key_ru" : "abs_sk_ru"
});
```

|   |                                                                                                                                                      |
| - | ---------------------------------------------------------------------------------------------------------------------------------------------------- |
|   | You can use `update_keys` CLI command to change access and secret keys. For more information, see [ABS CLI commands](pingintelligence_abs_cli.html). |