PingIntelligence

Disabling attack list fetching from ABS

Steps

  • To disable ASE from fetching the ABS attack list, run the following command-line interface (CLI) command:

    /opt/pingidentity/ase/bin/cli.sh -u admin -p admin disable_abs_attack

    The ABS attack list can be viewed using ABS APIs and used to manually configured an attack list on ASE. For more information on ABS APIs, see ABS Administration.

    Result:

    After entering the above command, ASE will no longer fetch the attack list from ABS. However, ABS continues generating the attack list and stores it locally.

  • To stop an ASE cluster from sending log files to ABS, run the following ASE CLI command:

    /opt/pingidentity/ase/bin/cli.sh -u admin -p admin disable_abs

    For more information on types of attacks, see ABS AI Engine.

    Result:

    After entering this command, ABS will not receive any logs from ASE.