HI,
I was reading your post couple days ago and I was waiting for someone from IMPERVA who will aswer you.
But.. after 6 or 7 days I cannot see any answers, so I decide that will write something.
I can tell you only the truth.... sad truth. You have to pay for "best practices".
The official description of parameters in config_parameters.xml for common users doesn't exist. Why? - because it is magic knowledge available only for IMPERVA Professional Services. The same is with the best practice for DAM, WAF
You can get this knowledge in two ways:
1. by trial and error method -> hard working with customers for a long, long time or with your DAM environment.
2. working on a project together with a PS that uses these parameters and you can talk with him about this, and he wants to talk about that.
Summarizing, you have three choices:
first - you can try to find the best set of parameters by "twisting the potentiometer/parameters" by yourself
or
second - you can pay for IMPERVA Professional Services work.
or
third - you can find the imperva's partner who has implemented a lot of DAM installations and knows this "magic knowledge" at least a little bit....
------------------------------
Karol Gruszczynski
IT Security Expert
Trafford IT Sp. z o.o.
Warsaw
------------------------------
Original Message:
Sent: 03-10-2023 07:04
From: Raghuraman Gnanasundaram
Subject: Imperva Securesphere best practices and advanced parameter configuration for Large Busy databases
We are broadly looking for advanced configuration parameters and best practices that can be used for deployment into popular databases like Oracle and Postgres in user space mode.
Even though we see lots of parameters in config_parameters.xml , we don't see any official document providing explanation of the same and other internal workings. We see lot of parameters can be pre-tuned to appropriate value to avoid any incidents in production environment by typically making an upfront assessment of database in terms of memory allocated, number of db connections etc.
Is it something this community can help on the above with right links/pointers , as that would be of immense help.
thank you.
#DatabaseActivityMonitoring
------------------------------
Raghuraman Gnanasundaram
Spl'st, Pdt Eng'ng
Standard Chartered Bank
Singapore
------------------------------