Profile

Hello. If you run monitor > alerts > save as alert csv, I can see the fields as below. Alert No. Num. of Events Alert Description Alert Start Time Alert End Time Alert Flag Alert Type Immediate Action Server Group Session ID Severity Source IP URL User Agent User Name (DB) User Name (Applicative) ...

hello? I'm sending detection events from securesphere to splunk using syslog. The syslog settings are: CEF:0|Imperva Inc.|SecureSphere|$(SecureSphereVersion)|$(Alert.alertType)|#cefEscapeMessage($(Alert.alertMetadata.alertName))|$(Alert.severity)|act=$(Alert.immediateAction) dst=$(Event.destInfo.serverIp) ...