Imperva

Version : Imperva Securesphere 8 and later.

Imperva secureSphere Database Activity Monitor helps you efficiently demonstrate database compliance through automated processes, audit analysis, and customizable reports across heterogeneous database platforms.

With Netsurion Open XDR you can configure Imperva SecureSphere to send the syslog events to Netsurion Open XDR. It can monitor all database related activities more efficiently. It helps you to monitor the database management like creation, deletion of database and table. It generate the alerts when Security violations happens, login failed or success happened on database.

Imperva Logging

Netsurion Knowledge Pack for Imperva securesphere allows you to monitor following:-

  • Operations – Database deletion, Object management, table dropped and truncated activities.
  • Security – security violations and user & privileges management.
  • Compliance – Creation of database and database login failed.

Once logs are received into Netsurion Open XDR, alerts and reports can be configured into Netsurion Open XDR.

The following are the key Data Source Integration available in Netsurion Open XDR.

Alerts

Type Name Description
Security Imperva DAM – New DB user created This category based report provides information related to new users creation in database server.
Security Imperva DAM – Security Violations This alert is generated when any security violation alerts is raised.
Security Imperva DAM – Database Successful login This alert is generated when database login is successful.
Operations Imperva DAM – Database deleted This category based report provides information related to when database gets deleted.
Operations Imperva DAM – Table dropped/Truncated This category based report provides information related to any tables dropped or truncated.
Operations Imperva DAM – Data object management This category based report provides information related to data object management activity performed.
Operations Imperva DAM – Database created This alert is generated when new database is created.
Compliance Imperva DAM – Database created This category based report provides information related to new database creation.
Compliance Imperva DAM – Database failed login This alert is generated when database login failure occurs.