Imperva Cloud WAF

Overview

Configuring a cloud source in Scope is a two-step process.

  • Generating Imperva Cloud WAF API credentials in the Imperva Cloud Security Console. Please refer to Section 1 – Imperva Cloud WAF Setup

  • Setting up the Imperva Cloud WAF cloud source in the Scope application. Please refer to Section 2 - Scope Setup

Imperva Cloud WAF Setup

To get started, you’ll need to generate the following credentials in the Imperva Cloud Security Console –

  1. API Key ID
  2. API Key
  3. API Key Expiry Date
  4. Base URL

Step 1: Generate API Key

  • Log in to your Imperva Cloud Security Console as Admin.

  • Click the account drop-down available at the top-right corner of the home page and click Account Management.

  • Click Users under User Management from the left navigation.

  • Click the Add User button available at the top-right corner of the screen.

  • Enter the Name and Email.

  • Assign the Reader Role to the user by selecting the “Assign a role” radio button and selecting Reader from the drop-down.

  • Click the User created on the Users Page.

  • In the right panel, click the Actions option and click the “Set as API-only use” option.

  • In the right panel, click API Keys and then click Add API Key.

  • Enter the Name, Description, and API Key Expiry time.

  • Enable the Status button.

  • Click the Save button to generate the API Key. The system displays the API ID and API Key.

  • Copy and save the API ID and the API Key.

The generated API ID, API Key & API Key Expiry Date are to be configured in Scope Setup: Step 1 for initiating the Imperva Cloud WAF log ingestion.

Scope Setup

Step 1: Imperva Cloud WAF Cloud Source Registration in the Scope Application

Once the credentials are generated, they must be configured in the Scope application to establish the connection and enable data ingestion from the Imperva Cloud WAF environment.

In the Scope application, to register an Imperva Cloud WAF cloud source, navigate to the cloud source registration page

  • Log into the Scope application

  • Select the required Organization from the Organization dropdown

  • Navigate to the side menu -> Administration

  • Navigate to the Cloud sources tab

  • Click on the +Add Source button

  • In the Add Source pop-up, provide the parameters below.

    • Source: Select the “Imperva Cloud WAF” source from the Source dropdown.

    • Site: The user defined name for the Imperva Cloud WAF cloud source.

    • Base URL: The Base URL of the Imperva Cloud WAF environment.

    • API ID: The API ID generated in Step 1.

    • API Key: The API Key generated in Step 1.

    • API Key Expiry Date (Optional): The API Key Expiry Date set during key generation in Step 1.

    • Polling Interval: The polling interval for making periodic API calls to the Imperva Cloud WAF cloud source is to be selected. The user can select the polling interval from the drop-down.

    • Contact Email: Provide the email address of the person who registers the Imperva Cloud WAF cloud source in Scope.

Once the required connection parameters are entered, the Imperva Cloud WAF cloud source registration is complete in Scope and is ready for ingestion of Imperva Cloud WAF logs.

https://docs-cybersec.thalesgroup.com/bundle/cloud-application-security/page/settings/api-keys.htm