Imperva Partner

DemoVM
DAM OneBox for Imperva partners v1.0
Partner DemoVM LAB - Setup Instructions

Demo VM v14.0
The objective of this document is to explain, how to install and connect to a VM image of Imperva’s DAM On-Premise
system on a Desktop or Laptop PC. The purpose of this is to allow you to be able to fully demonstrate all the features
and functionalities of the On-Premise system. Imperva is providing this Partner VM Demo with the understanding that
this image is modified and can only be used for Demo purposes and will not be used for production purposes.

This environment can be used every feature and functionality offered in the On-Premise system including DAM server
groups, profiles, alerts, Web App Vulnerability scanner integration, Bot mitigation, Anti Scraping, web server discovery
and much, much more.

Limitations:
This Partner DemoVM, called OneBox, is a modified version from the production image and is built to run on VMWare
Workstation to deliver demo’s/ workshop or learning purposes. The images cannot be updated with patch updates, you
need to check with the Imperva Channel team if a new version is required.

Initial VM Configuration Instructions

The required software can be downloaded from the Imperva FTP server, the FTP server address is:

• With a secure ftp client: ftp-us.imperva.com

• With the web browser: https://ftp-us.imperva.com

The images are packed with 7-Zip.

Note: The software images are big in size, it is therefore recommended to use an FTP client like WINSCP to download
the images.

Note: It might happen that via the web browser the content cannot be seen on the FTP server. Try to clear the cache
and refresh or use an FTP client, e.g., WINSCP (recommended)

1. Get the Latest VM image

a. Browser to the Imperva FTP site at ftp-us.imperva.com (or web page). Browse to the following directory:

/PartnerAssets/Partner DemoVM/Imperva_On-Premises/DAM_OneBox/DAM_OneBoX_VM

Download the available image, the naming will be similar to “V######_DAM_OneBox” (“######” will
show the actual version of the image).

Read the README.txt file

2. Get the latest license:

 a. Browse to the Imperva FTP site at ftp-us.imperva.com (or web page). Download from the following path
the license file:

/PartnerAssets/Partner DemoVM/Imperva_On-Premises/DAM_OneBox/Latest_License

The file On-Premise_LicXX.0_POAll_DRKaPwrRnJEa_XX_XX_XXXX.mprv (The “X” will have a different

value)

3. Pre-requirements
a. The Desktop or Laptop that will be used for the Demo must have at least 16GB RAM and at least 50GB of
disk.
b. For better performance increase the RAM level to 32GB
c. For better performance use an SSD drive or external drive
d. VMware Workstation/Fusion version 11 is supported
e. The PartnerDemo VM cannot run on ESX(i)

4. Initial Setup
a. Install VMware Workstation V11 or higher.
b. Now to connect to the Image make sure that you have the following properly configured in the Virtual
Network Editor for VMnet1, VMnet2 and NAT
NAT settings for default gateway
5. How to Connect to the On-Premise Management interface
a. Unzip the VM Image file. Open VM Workstation and in the taskbar and go to ‘File’ > ‘Open’ browse to the
directory that you had unzipped the above file and choose the ‘.vmx’ file. This will now be loaded into the
Workstation.
b. Now ‘click’ to ‘Resume’ the image. This will ‘power on’ the image.

c. When it asks if the VM has been moved or copied, It’s IMPORTANT to SELECT “I moved it” to prevent the
MAC Address from
changing.

d. Now to the bottom right hand corner, please ensure that out of the four (4) Network Adapters, that there is
only one that is actually connected.
e. Make sure the OneBox Network Adapters are configured as shown below

Once the On-Premise DAM OneBox is up and running and you are able to login, you can re-enable the 3rd
and 4th NICs which are used for the bridge interfaces, if you want to set up a lab using our SuperVeda Web
App (available on the FTP server) to generate alerts. Right click on the NIC(s) and choose to connect.
f. The Management NIC on the On-Premise Image has been set to an IP of 10.255.0.99 with a subnet mask of
255.255.255.0.

g. You should now be able to connect to the On-Premise DAM OneBox, within the realm of your own desktop
or laptop at the IP address that you specified. Use ‘Putty’ to connect via SSH or use a Browser to connect at
the following address:
https://10.255.0.99:8083
CLI Console: root/Root123
SSH: admin/Admin123
On-Premise GUI: admin/Admin123 or admin123

For credentials overview, check the description of the VMware image, this will have all details about the
accounts that are used.

When you are not able to connect, check the local created VMware virtual interface, the naming should be
according the networks that you have created:

Check the configuration details for the virtual network adapter

h. You can connect directly to the On-Premise DAM OneBox via SSH using the “admin” user account and you
might be required to change your password the first time you login with that user account:

To enter the power-shell, you need to type in “admin”

 i. To SSH to the On-Premise DAM OneBox using the “root” account, you have to enter this command with your
IP address, as shown in the screen shot below. The IP should be the IP of your Virtual NIC, if your VNet is
“Host Only”.
[root@V145011_DAM_OneBox ~]# impctl hardening config --root-source-ip-exception=10.255.0.1

j. You can check the status of the existing On-Premise DAM OneBox license under Admin > Licensing. If you
have a new license to install, select Admin > Licensing > Action > Update License information as shown in
the screenshot below.

6. Troubleshooting & Configuration Examples

a. If the VM image is crashing your environment or just hanging, disable the Bridge NICs (2nd & 3rd NICs).

b. From the CLI, the command impcfg will take you to the interactive configuration menu
c. If you have trouble connecting to the management NIC, execute ‘cat /etc/sysconfig/network-scripts/ifcfg-
ethx’ (look at the management NIC) and make sure that the right IP address appears in this file.

d. This command will show the Patch Level:

[root@V145011_DAM_OneBox ~]#cat /opt/On-Premise/etc/patch_level

e. This command shows the On-Premise DAM OneBox and bridge status:
 f. This command will show the GW traffic stats: cat /proc/hades/status

g. To enable ICMP on a GW:

▪ Edit the file /etc/sysctl.conf
▪ Scroll down to the line beginning with net.ipv4.icmp_echo_ignore_all
▪ Change the value of the line from 1 to 0
▪ Reboot

Kali Linux VM Setup

1) Open the Kali Linux image in VMWare

2) Under Virtual Machine settings make sure the Kali VM’s NIC in VMnet 1
3) Power on the Kali VM
4) Username: kali or root
Password: Webco123 or toor
IP: 10.255.0.50/15
5) You can use the built-in scan/attack tools to generate attacks in On-Premise. The Kali VM will be sitting
in front of the DAM and be used to attack the SuperVeda Web App (10.255.0.100/150) behind the
bridge mode DAM.
SuperVeda VM Setup
▪ The SuperVeda VM is a Linux Server running Apache & MySQL DB (superveda_db)
▪ SuperVeda is a vulnerable online retail web app that you access through your browser
▪ OS username: root
OS Password: Imperva@2021
▪ MySQL Username: root
MySQL Password: Imperva123
▪ IP Address: 10.255.0.100
▪ WebApp: http(s)://10.255.0.100

1) Open the SuperVeda VM in VMWare

2) Make sure the SuperVeda NIC is in VMnet 2 (behind the DAM).

3) Power on the SuperVeda VM

Appendix A – Virtual Network Diagram
Appendix B – Credentials

Credentials
System Username Password
On-Premise DAM WebGUI admin Admin123
On-Premise Console root Root123
On-Premise Console secure Imperva123#
On-Premise SSH admin Admin123
On-Premise Database user System Imperva123#
Agent to gateway Imperva Imperva123#
Superveda OS root Imperva@2021
Superveda Database Login root Imperva123
Superveda shop login bugsb carrots