Arctic Wolf Documentation

If you have any questions or concerns, contact your Concierge Security® Team at security@arcticwolf.com

Managed Detection and Response

Sensor Deployment

Virtual Sensor —Installing Virtual Sensor | Troubleshooting Virtual Sensors

Virtual Log Collector — Installing Virtual Log Collector

AWN101 Sensor — Internal Tap Deployment | Mirroring Deployment

AWN201 Sensor — Internal Tap Deployment | Mirroring Deployment

AWN201 Sensor 10G — Internal Tap Deployment | Mirroring Deployment

AWN202 Sensor — Internal Tap Deployment | Mirroring Deployment

AWN202 Sensor 10G — Internal Tap Deployment | Mirroring Deployment

AWN203 Sensor — Mirroring Deployment

AWN301 Sensor — Mirroring Deployment

AWN301 Sensor 10G — Internal Tap Deployment | Mirroring Deployment

AWN1000 Sensor — Internal Tap Deployment | Mirroring Deployment

AWN1000 Sensor 10G — Internal Tap Deployment | Mirroring Deployment

Replacement Guides

Switch Port Mirroring

These are direct links to manufacturer setup instructions not hosted by Arctic Wolf.

Cisco Meraki

Dell Force10

Juniper Ex Series

HP ProCurve

Catalyst 4500 Series Switch

Active Directory Sensor

Installing Active Directory

Syslog

Forcepoint Next Generation Firewall (NGFW)

Infoblox

Palo Alto Networks

Zscaler ZIA

Serial Console Sessions

Serial Console User Guide

Managed Risk

Scanner Deployment

Installing and Configuring Managed Risk Scanner

Migrating Managed Risk Scanner Configuration

Managed Risk Scanner FAQ

Risk Dashboard

Risk Dashboard User Guide

Cloud Security Posture Management

Amazon Web Services (AWS) — Configuring AWS Cloud Environment Scanning

Google Cloud Platform (GCP) — Configuring GCP Cloud Environment Scanning

Microsoft Azure — Configuring Microsoft Azure Cloud Environment Scanning

Managed Security Awareness

Configuring Managed Security Awareness

Managed Security Awareness Dashboard User Guide

Managed Security Awareness Service and Dashboard FAQ

Cloud Detection and Response

Amazon Web Services (AWS) — Configuring AWS Accounts Monitoring

Box — Providing Box Application Credentials to Arctic Wolf

Carbon Black — Providing Carbon Black Credentials to Arctic Wolf

Cisco Meraki — Configuring Monitoring for Cisco Meraki

Cisco Secure Access by Duo — Providing Duo Credentials to Arctic Wolf

Cisco Secure Endpoint — Providing Cisco Secure Endpoint Credentials to Arctic Wolf

Cisco Umbrella — Providing Cisco Umbrella Credentials to Arctic Wolf

Crowdstrike Falcon — Configuring Crowdstrike Falcon Credentials

Cylance — Providing Cylance Credentials to Arctic Wolf

Defender ATP — Configuring Defender ATP

Google Cloud Platform (GCP) — Configuring Google Cloud Platform Monitoring

Google Workspace — Configuring Google Workspace Monitoring

Microsoft 365 — Configuring Microsoft 365 Monitoring

Microsoft Azure — Configuring Azure Monitoring

Microsoft Defender for Cloud Apps — Configuring Microsoft Defender for Cloud Apps

Mimecast — Providing Mimecast Credentials to Arctic Wolf

Office 365 (O365) Government Community Cloud (GCC) High — Configuring O365 GCC High Monitoring

Okta — Configuring Monitoring for Okta

Palo Alto Networks (PAN) Cortex — Providing PAN Cortex Credentials to Arctic Wolf

Proofpoint TAP — Providing Proofpoint TAP credentials to Arctic Wolf

Salesforce — Providing Salesforce Credentials to Arctic Wolf

SentinelOne — Providing SentinelOne Credentials to Arctic Wolf

Sophos — Providing Sophos Central Credentials to Arctic Wolf

Symantec Broadcom — Providing Symantec Broadcom Credentials to Arctic Wolf

Webroot — Providing Webroot Credentials to Arctic Wolf

Arctic Wolf Agent

Installing Arctic Wolf Agent

Performing Arctic Wolf Agent Vulnerability Debug Scans

Arctic Wolf Agent FAQ

ConnectWise Integration

Configuring ConnectWise Integration

Incident Response

Creating Incident Response Retainer Cases

Creating Arctic Wolf Security Operations Warranty Claims