Has anyone installed Imperva Database Audit Analysis?
I can't configure it to show me data. I receive the logs and can see them in the search application. the logs are sent via syslog and are indexed correctly but are not parsed.
I followed the configuration instructions up to a point... there it is specified how to configure if you have syslog on splunk itself, but I have it on a separate server.
any help will be appreciated