Arctic Wolf Setup Resources

Managed Detection and Response

Sensor Deployment

Virtual Sensor —Installing Virtual Sensor | Troubleshooting Virtual Sensors

Virtual Log Collector — Installing Virtual Log Collector

AWN101 Sensor — Internal Tap Deployment | Mirroring Deployment

AWN201 Sensor — Internal Tap Deployment | Mirroring Deployment

AWN201 Sensor 10G — Internal Tap Deployment | Mirroring Deployment

AWN202 Sensor — Internal Tap Deployment | Mirroring Deployment

AWN202 Sensor 10G — Internal Tap Deployment | Mirroring Deployment

AWN203 Sensor — Mirroring Deployment

AWN301 Sensor — Mirroring Deployment

AWN301 Sensor 10G — Internal Tap Deployment | Mirroring Deployment

AWN1000 Sensor — Internal Tap Deployment | Mirroring Deployment

AWN1000 Sensor 10G — Internal Tap Deployment | Mirroring Deployment

Replacement Guides

AWN100 to AWN101 — Internal Tap Deployment | Mirroring Deployment
AWN200 to AWN201 — Internal Tap Deployment | Mirroring Deployment
AWN200 to AWN202 — Internal Tap Deployment | Mirroring Deployment

Switch Port Mirroring

These are direct links to manufacturer setup instructions not hosted by Arctic Wolf.

Catalyst 4500 Series Switch

Active Directory Sensor

Installing Active Directory

Syslog

Forcepoint Next Generation Firewall (NGFW)

Infoblox

Palo Alto Networks

Zscaler ZIA

Managed Risk

Scanner Deployment

Installing and Configuring Managed Risk Scanner

Migrating Managed Risk Scanner Configuration

Managed Risk Scanner FAQ

Risk Dashboard

Risk Dashboard User Guide

Cloud Security Posture Management

Amazon Web Services (AWS) — Configuring AWS Cloud Environment Scanning

Google Cloud Platform (GCP) — Configuring GCP Cloud Environment Scanning

Microsoft Azure — Configuring Microsoft Azure Cloud Environment Scanning

Managed Security Awareness

Configuring Managed Security Awareness

Managed Security Awareness Dashboard User Guide

Managed Security Awareness Service and Dashboard FAQ

Cloud Detection and Response

Amazon Web Services (AWS) — Configuring AWS Accounts Monitoring

Box — Providing Box Application Credentials to Arctic Wolf

Carbon Black — Providing Carbon Black Credentials to Arctic Wolf

Cisco Secure Access by Duo — Providing Duo Credentials to Arctic Wolf

Cisco Secure Endpoint — Providing Cisco Secure Endpoint Credentials to Arctic Wolf

Cisco Umbrella — Providing Cisco Umbrella Credentials to Arctic Wolf

Crowdstrike Falcon — Configuring Crowdstrike Falcon Credentials

Cylance — Providing Cylance Credentials to Arctic Wolf

Defender ATP — Configuring Defender ATP

Google Cloud Platform (GCP) — Configuring Google Cloud Platform Monitoring

Google Workspace — Configuring Google Workspace Monitoring

Microsoft 365 — Configuring Microsoft 365 Monitoring

Microsoft Azure — Configuring Azure Monitoring

Microsoft Defender for Cloud Apps — Configuring Microsoft Defender for Cloud Apps

Mimecast — Providing Mimecast Credentials to Arctic Wolf

Office 365 (O365) Government Community Cloud (GCC) High — Configuring O365 GCC High Monitoring

Okta — Configuring Monitoring for Okta

Palo Alto Networks (PAN) Cortex — Providing PAN Cortex Credentials to Arctic Wolf

Proofpoint TAP — Providing Proofpoint TAP credentials to Arctic Wolf

Salesforce — Providing Salesforce Credentials to Arctic Wolf

SentinelOne — Providing SentinelOne Credentials to Arctic Wolf

Sophos — Providing Sophos Central Credentials to Arctic Wolf

Webroot — Providing Webroot Credentials to Arctic Wolf

Arctic Wolf Agent

Installing Arctic Wolf Agent

Performing Arctic Wolf Agent Vulnerability Debug Scans

Arctic Wolf Agent FAQ

Log Search

Log Search User Guide

Log Search Query Guide

ConnectWise Integration

Configuring ConnectWise Integration

Service Assurance

Creating Arctic Wolf Service Assurance Claims