The Joval Utilities is a lightweight, standalone assessment engine that provides access to the core capabilities of the Joval Java SDK via the command line. It’s included in all Enterprise Edition and Developer Edition trials and licenses.
Please follow this guide to deploy the Joval Utilities and run your first scan. It should take about 15 minutes.
In order to complete this guide, you will need:
If you don’t have these, please register for an evaluation.
joval
Joval-Utilities
and move it to your working directory[your-domain].sig.xml
to your working directorycontent
Your working directory should now look like this:
joval
content
Joval-Utilities
...
Joval-Utilities.jar
User_Guide.pdf
[your-domain].sig.xml
Continue from the command line (note: reverse slashes on Windows):
cd [path-to-your-working-directory]
:: Confirm that Java is installed on this device
java -version
:: If you don't have Java, we recommend Java 8:
:: http://www.oracle.com/technetwork/java/javase/downloads/jre8-downloads-2133155.html
:: Confirm successful deployment by viewing command line help
java -jar Joval-Utilities/Joval-Utilities.jar -?
Note: Joval supports Java 6+, but we currently recommend Java 8 because XML support is less stable in Java 9-11.
To a run secure configuration assessment, download a baseline in SCAP format as follows:
content
folder in your joval
working directorycontent
folder in your joval
working directorycontent
folder in your joval
working directoryscap-security-guide.[version].zip
from the OpenSCAP Releases Pagessg-[platform]-ds.xml
file to the content
folder in your joval
working directoryTo run a vulnerability (CVE) assessment, download an OS-version-specific vulnerability feed in OVAL format to the content
folder in your joval
working directory:
The Joval Scan Configuration Assistant will guide you through the process of creating a scan configuration file. Continue from the command line (note: reverse slashes on Windows):
cd [path-to-your-working-directory]
:: Start the assistant and follow prompts to create your configuration file
java -Dlicense.file=[your-domain].sig.xml -jar Joval-Utilities/Joval-Utilities.jar scan
:: Then, run your scan!
java -Dlicense.file=[your-domain].sig.xml -jar Joval-Utilities/Joval-Utilities.jar scan -c config.ini
:: Review the output files and logs in the configured folders
User_Guide.pdf
in the Joval-Utilities
folder for additional configuration options including:
-c -
Please contact your account executive or reach out here!