Configure the Arctic Wolf Risk Scan Engine

You can use the quickstart configuration for Arctic Wolf Risk Scan Engine (formerly Joval) and the Joval Utilities® component. For more information, see the User_Guide.pdf file in the Joval-Utilities.zip file.

Note: This information only applies to Risk Scan Engine. It does not apply to any Managed Risk services. For more information about Managed Risk services, see Managed Risk.

These resources are required:

  • A valid license file (.xml)
  • Review the User_Guide.pdf file in the Joval-Utilities folder for additional configuration options.

Download Joval Utilities

  1. In the Customer Support Portal for Joval Utilities, navigate to the latest release listing.
  2. Download the Joval Utilities zip file to an easily-accessible folder on your machine.

Deploy the Arctic Wolf Risk Scan Engine

  1. Create a working directory, and then name the folder riskscanengine.
  2. Right-click the Joval Utilities zip file, and then click Extract All.
  3. In the Extract Compressed (Zipped) Folders window, navigate to and select the riskscanengine folder.
    Note:

    Verify that the Show extracted files when complete checkbox is selected.

  4. Name the new folder Joval-Utilities.
  5. Click Extract.
  6. Copy your license file, and then paste it in your working directory.

    The license file follows this naming convention: [your-domain].sig.xml.

  7. Create a new folder in your working directory, and then name it content.

    Your working directory structure should look similar to:

    BASH 
    ├── riskscanengine
│   ├── content
│   ├── Joval-Utilities
│   │   ├── ...
│   │   ├── Joval-Utilities.jar
│   │   ├── User_Guide.pdf
│   ├── [your-domain].sig.xml
  8. Run this command to move to your working directory:
    BASH 
    cd <working_directory_path>
  9. Run this command to make sure that Java is installed on your device:
    BASH 
    java -version
    Note:

    For Joval Utilities version 6.5 or older, Arctic Wolf recommends Java 8 because XML support is less stable in Java 9-1. Joval Utilities versions newer than 6.5 require Java 11 or newer. To download Java, see Java Downloads.

  10. Run this command to make sure that the deployment was successful:
    BASH 
    java -jar Joval-Utilities/Joval-Utilities.jar -?

Create a configuration file and run a scan

The Joval Scan Configuration Assistant guides you through the process of downloading assessment content and creating a scan configuration file. When complete, you can review the output files and logs in the configured folders.

  1. Run this command to move to your working directory:
    BASH 
    cd <working_directory_path>
  2. Run this command to start the assistant:
    BASH 
    java -Dlicense.file=<your_domain>.sig.xml -jar Joval-Utilities/Joval-Utilities.jar scan
  3. Follow the prompts to create your configuration file.
  4. Run this command to run a scan:
    BASH 
    java -Dlicense.file=<your_domain>.sig.xml -jar Joval-Utilities/Joval-Utilities.jar scan -c config.ini`