McAfee PASCDE-AB-IA Product Guide - Page 63
Create and apply a file integrity monitoring policy, Menu | Policy | Policy Catalog
View all McAfee PASCDE-AB-IA manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 63 highlights
File Integrity Monitoring and entitlement reporting Create and apply a file integrity monitoring policy One aspect of compliance monitoring is knowing which accounts have access to which files. McAfee Policy Auditor monitors these access permissions. • User - User who has access to the file. • Is Group - Whether the User is a group. • Read Data - Whether the User has the ability to read the file. • Write Data - Whether the User has the ability to write to the file. • Execute - Whether the User has the ability to execute the file. • Delete - Whether the User has the ability to delete the file. Create and apply a file integrity monitoring policy Using a file integrity monitoring policy is a two-stage process. First, you must create the policy. Next, you must apply the policy to selected systems in a System Tree group. You can create one policy per group. Tasks Create a file integrity monitoring policy Apply a policy to systems Compare file versions Accept file integrity monitoring events Purge file integrity monitoring events Create a new file integrity monitoring baseline Create a file integrity monitoring policy Create a policy to monitor file integrity, file entitlement, and version changes. Before you begin You must install the McAfee Policy Auditor agent plug-in on all systems that are to be monitored. For instructions on how to do this, see Managing the McAfee Policy Auditor agent plug-in. When adding, editing, or excluding text files, you can use the ? wildcard to represent one character and the * wildcard to represent multiple characters. Task For option definitions, click ? in the interface. 1 Click Menu | Policy | Policy Catalog. 2 From the Product drop-down list, select Policy Auditor Agent 6.0.0. 3 From the Category drop-down list, select File Integrity Monitor. 4 Click Actions | New Policy. The New policy dialog box appears. 5 Provide information about the new policy: Option Category Definition Select File Integrity Monitor. This is selected by default. McAfee Policy Auditor 6.0 software Product Guide for ePolicy Orchestrator 4.6 63