on
30-Mar-2021
10:26
- edited on
05-Jun-2023
23:03
by
JimmyPackets
This article describes the PingIntelligence and F5 BIG-IP solution deployment for securing APIs. The integration identifies and automatically blocks cyber attacks on APIs, exposes active APIs, and provides detailed reporting on all API activity.
PingIntelligence is deployed in a side-band configuration with F5 BIG-IP. A PingIntelligence policy is installed in F5 BIG-IP and passes API metadata to PingIntelligence for detailed API activity reporting and attack detection with optional client blocking. PingIntelligence software includes support for reporting and attack detection based on usernames captured from JSON Web Token (JWT).
Following is a description of the traffic flow through F5 BIG-IP and PingIntelligence API Security Enforcer (ASE):
oi_ext
. Edit the ASE configuration by clicking on the ASEConfig.js file. It opens the PingIntelligence policy in the editor:
If you already created the virtual server, skip this step
The imported PingIntelligence policy must be tied to a virtual server. Add the PingIntelligence policy to the virtual server.
Once the solution is deployed, you can gain insights into user activity, attack information, blocked connections, forensic data, and much more from the PingIntelligence dashboard