Activating API cybersecurity - PingIntelligence for APIs

Activating API cybersecurity - PingIntelligence for APIs - 5.2

PingIntelligence

bundle

pingintelligence-52

ft:publication_title

PingIntelligence

Product_Version_ce

PingIntelligence for APIs 5.2 (Latest)

category

APISecurity

AdvancedAPICybersecurity

Capability

Environment

Product

apisecurity

capability

linux

pi-52

pingintelligence

private

ContentType_ce

The API Security Enforcer (ASE) provides real-time API cybersecurity using the list of attacks generated by the PingIntelligence for APIs AI Engine.

To activate real-time API cybersecurity, you must enable the ASE firewall.

To enable or disable ASE's API cybersecurity feature:

To enable ASE's API cybersecurity:

Run the enable_firewall command in the ASE command-line interface (CLI).
```
/opt/pingidentity/ase/bin/cli.sh -u admin -p admin enable_firewall
Firewall is now enabled
```

After enabling API Security, run the status CLI command to verify cybersecurity is enabled.

/opt/pingidentity/ase/bin/cli.sh status
Ping Identity Inc., API Security Enforcer
status : started
http/ws : port 80
https/wss : port 443
firewall : enabled 
abs : disabled
abs attack : disabled
audit : enabled
ase detected attack : disabled
attack list memory : configured 128.00 MB, used 25.60 MB, free 102.40 MB

To disable ASE’s API cybersecurity:

Run the disable_firewall CLI command.

/opt/pingidentity/ase/bin/cli.sh -u admin -p admin disable_firewall
Firewall is now disabled

Run the status CLI command to verify that cybersecurity is disabled.

/opt/pingidentity/ase/bin/cli.sh status
Ping Identity Inc., API Security Enforcer
status : started
http/ws : port 80
https/wss : port 443
firewall : disabled 
abs : disabled
abs attack : disabled
audit : enabled
ase detected attack : disabled
attack list memory : configured 128.00 MB, used 25.60 MB, free 102.40 MB