Request trial
Request Trial

File Integrity Monitoring at NXLOG

Tags: File Integrity Monitoring
#1 aurox3d_fc

Hi,

Regarding the File Integrity Monitoring module:

  1. Is it possible to detect the user who performs the changes? Currently, there is no detail of who made the changes in the NXLog logs.
  2. What is the recommended scan-interval to be set? Will it affect the performance of the system?

Thank You

Permalink
#2 rafDeactivated Nxlog ✓
#1 aurox3d_fc
Hi, Regarding the File Integrity Monitoring module: Is it possible to detect the user who performs the changes? Currently, there is no detail of who made the changes in the NXLog logs. What is the recommended scan-interval to be set? Will it affect the performance of the system? Thank You

Hello

  1. im_fim doesn't provide this kind of information, you'd need to implement this kind of policy in external software to gather this information.
  2. The scanning consumes some resources, however, not on a significant scale and it depends on many factors, especially on the number of files being monitored, but also on the infrastructure itself. The chosen interval should align with your particular policy needs. I'd encourage you to test the settings and check how it works on your system.

Best regards,
Rafal
Login to see more

Subscribe to our newsletter to get the latest updates, news, and products releases.

© Copyright 2024 NXLog Ltd.

PRIVACY POLICY GENERAL TERMS OF BUSINESS