Configure vulnerability scanning

Vulnerability scanning requires a physical or virtual Internal Vulnerability Assessment (IVA) Scanner. For more information about installing an IVA scanner, see Arctic Wolf Scanners.

You can configure an IVA scanner in these ways:

Enable vulnerability scanning

If you previously disabled vulnerability scanning, you must enable it to resume Internal Vulnerability Assessment (IVA) scans and resolve dashboard reporting errors.

  1. Sign in to the Arctic Wolf Unified Portal.
  2. In the navigation menu, click Data Collection > Scanners.
  3. Find the scanner to view, and then click View Scanner.
    Tip:

    The scanner must be online for configuration changes. If needed, use filters to limit your results. For more information, see Scanner filters.

  4. In the Scanner Configuration section:
    1. Click the Vulnerability Scanning toggle to the on position.
    2. Make sure the Host Identification toggle is in the on position.
  5. Click Update Configuration.

    This button is not available if the scanner is offline.

Disable vulnerability scanning

Vulnerability scanning is required for normal operation, but you can disable it when required. When vulnerability scanning is disabled, no new Internal Vulnerability Assessment (IVA) scans will run until you enable it again, and dashboard reporting errors will occur after 24 hours.

  1. Sign in to the Arctic Wolf Unified Portal.
  2. In the navigation menu, click Data Collection > Scanners.
  3. Find the scanner to view, and then click View Scanner.
    Tip:

    The scanner must be online for configuration changes. If needed, use filters to limit your results. For more information, see Scanner filters.

  4. In the Scanner Configuration section, click the Vulnerability Scanning toggle to the off position.
  5. Click Update Configuration.

    This button is not available if the scanner is offline.

Rename an IVA scanner

You can rename an Internal Vulnerability Assessment (IVA) scanner to make the scanner easier to identify across Arctic Wolf interfaces like the Unified Portal and Risk Dashboard.

  1. Sign in to the Arctic Wolf Unified Portal.
  2. In the navigation menu, click Data Collection > Scanners.
  3. Find the scanner to view, and then click View Scanner.
    Tip:

    The scanner must be online for configuration changes. If needed, use filters to limit your results. For more information, see Scanner filters.

  4. Click the Scanner Details tab.
  5. In the Scanner Information section, click the field that you want to edit, and then enter the new value.
  6. Click Save Changes.
    If you try to leave this page without saving changes, a dialog displays to confirm your actions.
The new scanner name is saved.