What is Corner Bowl File Integrity Monitor?
Continuously monitor operating system, application and mission critical data files for user access, changes made to file content, attributes and access permissions on both Windows and Linux/Unix servers.
How does Corner Bowl File Integrity Monitor work?
Corner Bowl Software's File Integrity Monitor scans directories using Windows Shares and SSH/SFTP to create file access, file attribute and file content baselines then continually re-scans to let you know when a file is accessed, modified or deleted. Access Permissions are scanned on Windows Servers using WMI.
Real-Time Object Access Auditing
If you want to know the user that modified a file on a Windows Server, enable Object Access Auditing on your Windows Server and you will get notified in real-time the instant a user accesses a file along with the IP address the access was made from. Please note, Object Access Auditing monitoring requires either a Server Manager or an Event Log Manager license.
File Integrity Monitor Video Tutorial
File Integrity Monitoring Options
|Accessed||Notifies you when a file is accessed.|
|Modified||Notifies you when a file is modified.|
|Created||Validates the file was not replaced with another file that contains a different creation time.|
|Attributes||Validates file attributes such as Hidden and Read-Only have not changed.|
|Access Permissions||Performs and exhaustive scan of file permissions then notifies you when any permissions have been added, modified or removed.|
|File Contents Hash||Performs a hash using the file contents then notifies you when any bits have changed.|
|File Contents||Baselines the entire file contents then validates no bits have changed.|
|File Size||Notifies you when the file size changes.|
Who Requires File Integrity Monitoring?
|PCI DSS||Payment Card Industry Data Security Standard (Requirement 11.5)|
|SOX||Sarbanes-Oxley Act (Section 404)|
|NERC CIP||NERC CIP Standard (CIP-010-2)|
|FISMA||Federal Information Security Management Act (NIST SP800-53 Rev3)|
|HIPAA||Health Insurance Portability and Accountability Act of 1996 (NIST Publication 800-66)|
|SANS||Critical Security Controls (Control 3)|
Last Updated: June 22nd, 2022