This article covers how to connect Imperva Web Application Firewall (WAF) to Expel Workbench.
Quick Links
Step 1: Create an Expel SOC Account in the Imperva Cloud Security Console
-
Log into your Imperva Cloud Security Console as an Administrator.
-
Navigate to Account > Account Management.
-
On the left side, click Users.
-
Click Add User, then fill out the Name and Email for the Expel SOC Account.
Use
“soc+<Your Organization Name>@expel.io”
.Assign the Reader role to the account, then click Save.
Step 2: Generate an API Key for the Expel SOC User
-
Click the new user you just created, a Settings menu will appear on the right.
Click the API keys drop-down, then click Add API key.
-
Add a Name and Description for the API Key.
-
Select the Never expire option.
-
Move the Status slider to Enabled, then click Save.
-
Your API ID and API Key will show on the screen. Copy and store the API ID and API Key to a secure location. Be sure to do this as this is the ONLY time these values are shown.
Step 3: Add Imperva as a Security Device in Workbench
- Log in to Workbench.
- In the side menu, navigate to Organization Settings > Security Devices.
- Select Add Security Device.
- In the search box, type “Imperva” and then select the Imperva integration.
- A configuration pane displays. Complete the fields as follows:
- Name - enter a name that might help you more easily identify this integration, such as “CompanyName Imperva WAF”; this name will display in Workbench under the Name column, and is a text string that you can filter on.
- Location - enter the location of your integration, for example, “cloud.” This is also a text string that you can filter on, so we recommend being consistent with location naming across your Expel integrations.
- Connection Settings - provide the appropriate information:
- Select Save.
- Your device should be created successfully within a few seconds.
You can see if the device is healthy on the Security Devices page in Workbench. It may take a few minutes to see the device listed as healthy.