---
title: Activating API cybersecurity
description: The API Security Enforcer (ASE) provides real-time application programming interface (API) cybersecurity using the list of attacks generated by the PingIntelligence for APIs AI Engine.
component: pingintelligence
version: 5.2
page_id: pingintelligence:pingintelligence_reference_guide:pingintelligence_activate_api_cybersecurity
canonical_url: https://docs.pingidentity.com/pingintelligence/5.2/pingintelligence_reference_guide/pingintelligence_activate_api_cybersecurity.html
revdate: April 3, 2024
section_ids:
  before-you-begin: Before you begin
  about-this-task: About this task
  steps: Steps
  example: Example:
  example-2: Example:
  example-3: Example:
  example-4: Example:
---

# Activating API cybersecurity

The API Security Enforcer (ASE) provides real-time application programming interface (API) *(tooltip: \<div class="paragraph">
\<p>A specification of interactions available for building software to access an application or service.\</p>
\</div>)* cybersecurity using the list of attacks generated by the PingIntelligence for APIs AI Engine.

## Before you begin

To activate real-time API cybersecurity, you must enable the ASE firewall.

## About this task

To enable or disable ASE's API cybersecurity feature:

## Steps

* To enable ASE's API cybersecurity:

  1. Run the `enable_firewall` command in the ASE command-line interface (CLI).

     ### Example:

     ```
     /opt/pingidentity/ase/bin/cli.sh -u admin -p admin enable_firewall
     Firewall is now enabled
     ```

  2. After enabling API Security, run the `status` CLI command to verify cybersecurity is enabled.

     ### Example:

     ```
     /opt/pingidentity/ase/bin/cli.sh status
     Ping Identity Inc., API Security Enforcer
     status : started
     http/ws : port 80
     https/wss : port 443
     firewall : enabled
     abs : disabled
     abs attack : disabled
     audit : enabled
     ase detected attack : disabled
     attack list memory : configured 128.00 MB, used 25.60 MB, free 102.40 MB
     ```

* To disable ASE's API cybersecurity:

  1. Run the `disable_firewall` CLI command.

     ### Example:

     ```
     /opt/pingidentity/ase/bin/cli.sh -u admin -p admin disable_firewall
     Firewall is now disabled
     ```

  2. Run the `status` CLI command to verify that cybersecurity is disabled.

     ### Example:

     ```
     /opt/pingidentity/ase/bin/cli.sh status
     Ping Identity Inc., API Security Enforcer
     status : started
     http/ws : port 80
     https/wss : port 443
     firewall : disabled
     abs : disabled
     abs attack : disabled
     audit : enabled
     ase detected attack : disabled
     attack list memory : configured 128.00 MB, used 25.60 MB, free 102.40 MB
     ```