Imperva WAF Application Security Integration with TEM
Overview
Imperva Web Application Firewall (WAF Application Security) integrates with Threat Exposure Management (TEM) to enhance visibility, reduce exposures, and automate security operations. The integration uses Imperva API credentials to pull site data, assess misconfigurations, and push Indicators of Compromise (IoCs) to WAF Application Security rules.
Supported Capabilities
-
Indicators - Manages threat intelligence across all integrated security controls, ensuring consistent alignment and protection across the organization.
-
Security Hygiene - This capability strengthens system security by identifying and correcting misconfigurations. It focuses on making proper configuration changes to fix exposures at their source. These are typically one-time corrections that remain effective unless new misconfigurations occur.
Integrating Imperva WAF with TEM
Step 1 - Generating API Credentials
-
Log in to the Imperva Dashboard.
-
Navigate to Account > My Profile.
Note - Ensure the user has the Administrator Role assigned.
-
Navigate to the API Keys section and click Add API Key.
-
In the Add API keys pop-up that appears, enter the following details:
-
In the Name field, enter a name for the API key.
-
(Optional) In the Description field, enter a description to identify the purpose of the key.
-
In the API key will expire in field, set the expiration date for the key.
-
Ensure the Status toggle is enabled.
-
-
Click Create.
Note - Copy and securely store the API ID and API Key before closing the pop-up. Once the pop-up is closed, the API key cannot be viewed again.
Step 2 - Configuring the TEM Portal
-
Log in to the TEM portal.
-
Go to Settings > Integrations > Catalog > Imperva Web Application Firewall.
-
In the Imperva Web Application Firewall pop-up that appears, navigate to the Connection tab and enter the following details.
-
In the Connection Name field, enter a name for this connection.
-
In the API ID field, enter the API ID copied from the Imperva dashboard.
-
In the API Key field, enter the API key generated from the Imperva dashboard.
-
(Optional) Enable the Customer Proxy checkbox if the integration traffic must be routed through your organization’s proxy server.
-
-
Click Next.
-
(Optional) In the Connection Preferences section, configure the integration behavior:
-
Push IOCs – Enable the Select all sites toggle to allow TEM to push indicators to Imperva.
-
Monitor WAF Misconfigurations – Enable the Select all sites toggle to assess Imperva WAF Application Security settings.
Note - The Select All sites toggle applies protection across all available sites. Alternatively, specific sites can be selected to apply protection only to the chosen environments.
-
-
Click Create.
-
(Optional) In the Configuration section, enable the Import Indicators created before this integration was set up checkbox to backfill existing indicators into the integration.
-
Click Connect to establish a connection.




