Risk Scan Engine Quickstart Configuration

Updated Dec 15, 2023

Configure the Arctic Wolf Risk Scan Engine

You can use the quickstart configuration for Arctic Wolf Risk Scan Engine (formerly Joval) and the Joval Utilities® component. See the User_Guide.pdf file in the Joval-Utilities.zip file for more information.

Requirements

Steps

  1. Download Joval Utilities.
  2. Deploy the Arctic Wolf Risk Scan Engine.
  3. Create a configuration file and run a scan.

Step 1: Download Joval Utilities

  1. In the Customer Support Portal for Joval Utilities, navigate to the latest release listing.
  2. Download the Joval Utilities zip file to an easily-accessible folder on your machine.

Step 2: Deploy the Arctic Wolf Risk Scan Engine

  1. Create a working directory, and then name the folder riskscanengine.

  2. Right-click the Joval Utilities zip file, and then click Extract All.

  3. In the Extract Compressed (Zipped) Folders window, navigate to and select the riskscanengine folder.

    Note: Verify that the Show extracted files when complete checkbox is selected.

  4. Name the new folder Joval-Utilities.

  5. Click Extract.

  6. Copy your license file, and then paste it in your working directory.

    The license file follows this naming convention: [your-domain].sig.xml.

  7. Create a new folder in your working directory, and then name it content.

    Your working directory structure should look similar to:

    ├── riskscanengine
    │   ├── content
    │   ├── Joval-Utilities
    │   │   ├── ...
    │   │   ├── Joval-Utilities.jar
    │   │   ├── User_Guide.pdf
    │   ├── [your-domain].sig.xml
  8. Run this command to move to your working directory:

    cd <working_directory_path>
  9. Run this command to make sure that Java is installed on your device:

    java -version

    Note: For Joval Utilities version 6.5 or older, Arctic Wolf recommends Java 8 because XML support is less stable in Java 9-1. Joval Utilities versions newer than 6.5 require Java 11 or newer. To download Java, see Java Downloads.

  10. Run this command to make sure that the deployment was successful:

    java -jar Joval-Utilities/Joval-Utilities.jar -?

Step 3: Create a configuration file and run a scan

The Joval Scan Configuration Assistant guides you through the process of downloading assessment content and creating a scan configuration file. When complete, you can review the output files and logs in the configured folders.

  1. Run this command to move to your working directory:
    cd <working_directory_path>
  2. Run this command to start the assistant:
    java -Dlicense.file=<your_domain>.sig.xml -jar Joval-Utilities/Joval-Utilities.jar scan
  3. Follow the prompts to create your configuration file.
  4. Run this command to run a scan:
    java -Dlicense.file=<your_domain>.sig.xml -jar Joval-Utilities/Joval-Utilities.jar scan -c config.ini`

Next Steps

See also