The ABS AI Engine generates attack, metric, and forensics reports which are accessed using the ABS REST API to access JSON formatted reports. Ping Identity provides templates to use Postman, a free tool for formatting REST API reports.
Note:

Until the training period is complete (based on volume of traffic) for an API, only a minimal amount of reporting data will be available. If traffic volume is low, it may take several days before some of the reports (e.g. attack reports) have data.

Install Postman with PingIntelligence for API reports

Ping Identity provides configuration files which are used by Postman to access the ABS REST API JSON information reports. Make sure to install Postman 6.2.5 or higher.

Using ABS self-signed certificate with Postman

ABS ships with a self-signed certificate. To use Postman with the self-signed certificate of ABS, disable the certificate verification option by following the steps at this link

View ABS reports in Postman

To view the reports in Postman, complete the steps mentioned in the View ABS reports in Postman topic. In configuring the environment, the following details are required:

  1. Server: Use the ABS URL provided in the email
  2. Port: Use the port number located at the end of the ABS URL in the email
  3. Access_Key: Use the ABS access key provided in the email
  4. Secret_key: Use the ABS secret key provided in the email
API_Nameis the name of the API. Do not edit any variables that start with “system”.
Note: For detailed information on ABS reports, see Attack Reporting in the ABS Admin Guide.

Following is a list of reports that you can generate using Postman or any other REST API client:

  • Metrics report
  • Anomalies report
  • API key metrics report
  • OAuth2 token metrics report
  • OAuth2 token forensics report
  • IP forensics report
  • Cookie forensics report
  • Various attack types
  • Flow control report
  • Blocked connections report
  • Backend error report
  • List of valid URLs
  • List of hacker’s URLs