Sysmon Installation on Windows - Multiple EndpointsUpdated Jan 31, 2024
You can install Sysmon on multiple Windows endpoints using a third-party software deployment tool.
Arctic Wolf® Agent
See Install Arctic Wolf Agent for more information.
One of these operating systems (OS):
- Windows 10 or newer for 64- and 32-bit systems
- Windows Server 2016 or newer for 64-bit systems
Note: Agent OS minimum requirements are different from Sysmon minimum OS requirements. If you are installing Sysmon, make sure that you are installing the appropriate version for your OS.
Sysmon.zipfile for the latest Sysmon version, which includes the EXE files.
See Microsoft website for more information.
If you want to use Sysmon Assistant to install Sysmon, in the Arctic Wolf Unified Portal, click > Downloads, go to the Sysmon section, and then click Download Assistant to download the
Save these Sysmon Assistant installation files in the same folder:
Note: You do not need to include
Tip: Packaging both of the EXE files enables the Sysmon Assistant installer to choose the appropriate file for your systems. For example, if your organization includes both 32-bit and 64-bit systems, Sysmon Assistant installs Sysmon on each system using the appropriate EXE file.
Follow the instructions for your software deployment tool to install MSI packages.