Skip to main content
Version: 25.0.0

Java Agent Security Features Deployment

Please refer to the separate documentation for the Waratek Proposed Directory Structure for assistance with the steps below.

The following flags need to be added to <absoulte path to waratek agent>/conf_*/waratek.properties file.

Deploy Security Features

Security Features can be included in the content of rules.armr file as follows:

com.waratek.rules.local=<path-to-waratek-agent-conf-folder>rules.armr

Security patches (and ARMR security rules) can be loaded from a dedicated directory as follows:

com.waratek.rules.dir=<path-to-waratek-agent-conf-folder>

Once configured, the Waratek agent will load every patch/rule placed in the above directory.

  • Valid ARMR Security rules and Patch files must have a .armr file extension in the rules directory (files with other extension or no extension will be ignored)
  • A syntax error in an individual file will result in that particular file being ignored.
  • Other files in the directory will be loaded, provided they are free from syntax errors.
  • Subdirectories of the rules directory will be ignored.

On Java Agent v25.0.0 and later, it is possible to specify a path to a zip file using the com.waratek.rules.local Waratek option, where the zip file is a compressed directory containing 1 or more .armr files.

com.waratek.rules.local=<path-to-waratek-agent-conf-folder>rules.zip

On the Java Agent v25.0.0 and later, it is possible to specify a path to a directory containing multiple zip files using the com.waratek.rules.dir Waratek option, where each of the multiple zip files contains 1 or more .armr files. The directory specified by com.waratek.rules.dir may also contain .armr files as well as .zip files.

Auto-reloading

Ensure rules are auto-reloaded :

com.waratek.rules.autoreload=true

Agent Name

An agent name can be defined by using the following flag:

com.waratek.agent.name=helloWorld

An agent name given in the Portal takes priority over the name set in the waratek.properties file.

Backup Directory

The Waratek agent creates a backup of ARMR rule files as it changes these backup files will be saved to the backups directory, which is created automatically. Each backup filename ends with a three-digit number (e.g. 001) and allows the user to view/restore old versions of the ARMR rule file. If this directory is not cleared by the user, it will contain a full history of all ARMR rule files ever applied to the agent.