Search Imperva Community for
Thanks for the post. We are offering integration with ELK stack to allow for processing audit archives. The pack along with instructions for deployment of the ELK stack in itself is in Imperva's github repository:https://github.com/imperva/elk-plugin-pack
The ability to use this for MPRV archives is coming soon (current ETA is H2), but it currently works via syslog messages. The syslog template is also documented in the github repo. I would recommend starting with the Quick Start Guide (https://github.com/imperva/elk-plugin-pack/blob/master/Imperva%20Open%20Reporting%20Quick%20Start%20Guide.docx) in the repository.
Rajaram Srinivasan | Senior Product Manager
or Contact Us
Copyright @ 2019 Imperva. All rights reserved