Unanswered Threads

Hi, Is it possible to define WAF rules based on the mTLS connection? For example, can I restrict access so that CN=xxx is blocked, while CN=yyy is allowed to access the application? Currently, mTLS only performs certificate validation, and Client ...

Hi Team, I hope you are doing well. I want to configure a policy to report the user anomalous operation behavior, suppose if we have any user who is on daily basis using "Insert and Update " now suddenly he starts using "Delete ", can you help ...

Does anyone have a clear, step-by-step guide on how an Imperva partner can obtain an NFR license for Imperva solutions-specifically for the On-Prem WAF? I would like to streamline the process and avoid being directed to multiple contacts who may not have ...

Hi Imperva Community, Good Day! Asking for your help on the issue that we encounter on one of our users in Imperva CWAF. We tried to authenticate but it always says "The session has expired, please restart the login process" . We already tried ...

Hi Team, In my production on DAM, I have sql injection policy in place like in one policy i use default parameters and in another policy i have created one dictionary regex and added some parameters, but in production as per db admin sql injection ...

Hello Community, We are currently replacing our old reverse proxy with a new one. After updating the IP in the Site service via GUI, the traffic stopped working properly. Could you please share the checklist or best practices required (beyond just ...

Hi everyone Anyone else who knows what I need to put in the port group on the ESXi host? We tried to put ID 4095, and then everything worked fine. But when we put the ID of separate VLANs as 10, 20, or 30, it didn't work. We configured the connection ...

Hi everyone, I've done an analysis of the typical behavior of the TCP 3-way handshake on the Imperva Gateway WAF in inline mode "IMPVHA-Bridge". Based on the packet capture (pcap) traffic in my lab environment, I've reviewed the connection behavior ...

Hi team The DAM solution offers masking of audit data via the MX. We currently make use of this to mask passwords in audit data. How would implementing DSF accommodate the existing masking or allow us to configure it if needed? Thank you ...

Hi, Just wanted to check on fellow Impervians, if anyone here happened to encounter an issue on Mobile Apps via WAF Onprem. Aside from the tech info files (mx, gw) and the alerts logs if any,; What are the most suitable ways to gather the logs from ...

Hi, Just wanted to check on fellow Impervians, if anyone here happened to encounter an issue on Mobile Apps via WAF Onprem. Aside from the tech info files (mx, gw) and the alerts logs if any,; What are the most suitable ways to gather the logs from ...

Hi Community 👋 We're inviting you to join one of our EMEA customer user groups designed specifically for application and data security practitioners like yourself. These groups bring together Imperva and Thales experts, ...

Hello, I've been having issues with my Imperva DSF SDM Scans timing out within four hours. I'd like to know what the ratio is in hours to active gigabytes so I can figure out how small of a schema or table in a DB I need to scan at a time in order for ...

the agenda for our upcoming Data Security and Application Security User Group in Salt Lake City on September 10 . See what you can expect to learn at the event and please let me know if you would like to save a seat. At the ...

I want to ask about virtual patching mechanism. I see the documentation mentions virtual patching a lot but there is no specific section about this feature. Anyone provide specifically when a vulnerability is discovered on the DB server but the vendor ...

Hi Everyone, Does having purchased the Advanced Bot Protection module will automatically enable the ATO module as well. If yes, please verify Imperva ABP SAS team will involve in the configuration of the ABP module. #CloudWAF(formerlyIncapsula) ...

I was able to view only one HTTP method for each API endpoints which are listed under the API Inventory. Please elaborate does Imperva Cloud WAF provides the ability to view all the HTTP methods which are applied for a selected API endpoint. #CloudWAF(formerlyIncapsula) ...

I would like to know how the API crawling attacks can be mitigated from the Cloud WAF level. #CloudWAF(formerlyIncapsula) ------------------------------ Shyami Lakshika Engineer - Network and Security Connex Information Technologies (Pvt) Ltd. Colombo ...

Does the Imperva Cloud WAF can identify grant types/secrets of API calls. If it is possible, what is the procedure for that. #APISecurity ------------------------------ Shyami Lakshika Engineer - Network and Security Connex Information Technologies ...

As an Imperva Data Security suite user, you may want to get more out of the products you already use. The upcoming Amplify User Group will feature 2-hour technical Data Security Workshops that aim to help you do that. The workshops will focus on improving ...