PingIntelligence

Enabling attack list fetching from ABS

Steps

  1. To enable ASE Security, run the following command:

    /opt/pingidentity/ase/bin/cli.sh -u admin -p admin enable_firewall

  2. To enable ASE to send API traffic information to ABS, run the following command:

    /opt/pingidentity/ase/bin/cli.sh -u admin -p admin enable_abs

  3. To enable ASE to fetch and block ABS detected attacks, run the following command:

    /opt/pingidentity/ase/bin/cli.sh -u admin -p admin enable_abs_attack

    Result:

    After enabling automated attack blocking, ASE periodically fetches the attack list from ABS and blocks the identified connections.

  4. To set the time interval at which ASE fetches the attack list from ABS, configure the abs_attack_request_minute parameter in ase.conf file

    Example:

    ; This value determines how often ASE will query ABS.
abs_attack_request_minutes=10