---
title: Enabling and disabling real-time API cybersecurity
description: API Security Enforcer (ASE) provides real-time API cybersecurity to stop hackers. Violations are immediately blocked, and attack information is sent to the API Behavioral Security (ABS) engine.
component: pingintelligence
version: 5.2
page_id: pingintelligence:pingintelligence_reference_guide:pingintelligence_configuring_realtime_api_cybersecurity
canonical_url: https://docs.pingidentity.com/pingintelligence/5.2/pingintelligence_reference_guide/pingintelligence_configuring_realtime_api_cybersecurity.html
revdate: May 6, 2024
section_ids:
  about-this-task: About this task
  steps: Steps
  example: Example:
  example-2: Example:
  example-3: Example:
  example-4: Example:
---

# Enabling and disabling real-time API cybersecurity

API Security Enforcer (ASE) provides real-time API cybersecurity to stop hackers. Violations are immediately blocked, and attack information is sent to the API Behavioral Security (ABS) engine.

## About this task

|   |                                                                                                                                                                                                    |
| - | -------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- |
|   | Real-time API cybersecurity is activated only when ASE firewall is enabled. For more information on enabling the ASE firewall, see [CLI for inline ASE](pingintelligence_cli_for_inline_ase.html). |

## Steps

* To enable API cybersecurity:

  1. Run the `enable_firewall` command in the command-line interface (CLI):

     ### Example:

     ```
     /opt/pingidentity/ase/bin/cli.sh -u admin -p admin enable_firewall
     Firewall is now enabled
     ```

  2. To verify that cybersecurity is enabled, run the `status` command:

     ### Example:

     ```
     /opt/pingidentity/ase/bin/cli.sh status
     Ping Identity Inc., API Security Enforcer
     status : started
     http/ws : port 80
     https/wss : port 443
     firewall : enabled
     abs : disabled
     abs attack : disabled
     audit : enabled
     ase detected attack : disabled
     attack list memory : configured 128.00 MB, used 25.60 MB, free 102.40 MB
     ```

* To disable API cybersecurity:

  1. Run the `disable_firewall` command:

     ### Example:

     ```
     /opt/pingidentity/ase/bin/cli.sh -u admin -p admin disable_firewall
     Firewall is now disabled
     ```

  2. To verify that cybersecurity is enabled, run the `status` command:

     ### Example:

     ```
     /opt/pingidentity/ase/bin/cli.sh status
     Ping Identity Inc., API Security Enforcer
     status : started
     http/ws : port 80
     https/wss : port 443
     firewall : disabled
     abs : disabled
     abs attack : disabled
     audit : enabled
     ase detected attack : disabled
     attack list memory : configured 128.00 MB, used 25.60 MB, free 102.40 MB
     ```