Arctic Wolf Appliances


vScanner Installation on a Standalone ESXi Server

Updated Feb 20, 2024

Install a vScanner on a standalone ESXi server

Arctic Wolf® supports vScanner installation in a standalone VMware ESXi® server environment.

Requirements

Before you begin

Steps

  1. Download the vScanner image.
  2. Deploy the vScanner.
  3. Configure the vScanner.
  4. Activate the vScanner.

Step 1: Download the vScanner image

Note: The virtual appliance image file must be downloaded on or after June 14, 2023. For appliance images downloaded before June 14, 2023, see Legacy vScanner Installation.

  1. Sign in to the Risk Dashboard.

    Note: The Risk Dashboard is only compatible with Google Chrome.

  2. In the navigation menu, click Downloads.

  3. In the Download a Scanner Virtual Machine image for your virtualization infrastructure list, select VMware ESXi.

  4. Click Download Scanner VM.

    The MDR Dashboard opens in a new browser window.

  5. In the Virtual Network Appliances section, click Download Virtual Network Appliance to download the OVA file.

    Tip: If your browser downloads the OVA file in .ovf format, rename the file to change the file extension to .ova.

Step 2: Deploy the vScanner

  1. Sign in to your ESXi web UI.

  2. Click Create / Register VM.

  3. On the Select creation type page, select Deploy a virtual machine from an OVF or OVA file, and then click Next.

  4. On the Select OVF and VMDK files page, in the Enter a name for the virtual machine field, enter a name for the virtual machine (VM).

    Note: You must provide a unique name for the VM. If you use a current or past name, it can prevent activation in the management portal.

  5. Click Click to select files or drag/drop.

  6. Select the OVA file you downloaded, and then click Open.

  7. Click Next.

  8. On the Deployment options page, in Deployment type, select AWN Risk Scanner.

  9. Click Next.

  10. On the Additional setting page, click Next.

  11. On the Ready to complete page, click Finish.

Step 3: Configure the vScanner

  1. In the ESXi web UI, right-click your VM, and then click Power > Power On.

  2. Right-click your VM, and then click Console > Open Console.

  3. When prompted, press Enter three times to initiate the serial console session.

  4. At the Select an option to configure your management interface with prompt, select DHCP or enter a static IP address for the vScanner management interface.

    Note: If you select DHCP, you must use a DHCP reservation to prevent log collection and connection errors.

  5. Click Next.

  6. At the Use a proxy? prompt, do one of these actions:

    • If your vScanner traffic goes through a proxy server, select Yes, and then configure these settings:
      • Server IP address — Enter the proxy server IP address for your appliance.
      • Server port — Enter the proxy server port.
    • If your vScanner traffic does not go through a proxy server, select No.
  7. Click Next.

  8. At the Do you want to verify your network connection? prompt, select one of these options:

    • Yes

      A series of connectivity tests run.

    • No

  9. Click Next.

  10. At the Tell us about the application you are configuring prompt, configure these settings:

    • In the Shorthand field, enter the shorthand name for the vScanner.

    • Select Scanner.

  11. Click Next.

  12. When prompted, do one of these actions to connect the vScanner to the Arctic Wolf Platform:

    • On a mobile device — Scan the QR code displayed in the console window, and then follow the on-screen prompts.

      Note: QR codes expire after 15 minutes. A new code appears in the console if the QR code expires.

    • In a web browser — Enter the displayed URL into the URL field, and then follow the on-screen prompts.

    After the vScanner successfully connects to the Arctic Wolf Platform, a prompt replaces the QR code, asking you to sign in to the MDR Dashboard, and then click Accounts > Arctic Wolf Appliance Management.

Step 4: Activate the vScanner

  1. Sign in to the MDR Dashboard.

  2. Click Account > Arctic Wolf Appliance Management.

  3. Find the appliance that you want to activate.

  4. In the Actions column, click Activate <appliance>, and then click Activate <appliance> when prompted.

    The console displays Appliance activation in progress, please wait.

  5. When prompted, press Enter three times to activate the console.

See also