This article explains how to connect Imperva WAF to Workbench.


Expel integration with the Imperva WAF uses two values from your Imperva account:

  • X-API-ID


Step 1 Create an Expel SOC account in the Imperva Cloud Security Console:

  1. Log into your Imperva Cloud Security Console as an Administrator.

  2. Navigate to Account > Account Management.

  3. On the left side, click Users.

  4. Click Add User, then fill out the Name and Email for the Expel SOC Account.

    Use “soc+<Your Organization Name>”.

    Assign the Reader role to the account, then click Save.


Step 2: Generate an API key for the Expel SOC user

  1. Click the new user you just created, a Settings menu will appear on the right.

    Click the API keys drop-down, then click Add API key.

  2. Add a Name and Description for the API Key.

    Select the Never expire option.

    Click the Status slider to Enabled, then click Save.

  3. Your API ID and API Key will show on the screen.

    Copy and store the API ID and API Key to a secure location to send to Expel for Integration Onboarding.


    This is the ONLY time these values are shown.



This article was accurate at the time of writing, but changes happen. If you find the instructions are outdated, leave a description in the comment field below and let us know!