Supported file systems for Symantec Critical System Protection (SCSP) 5.2 RU9 Real-Time File Integrity Monitoring (RT-FIM).

book

Article ID: 181117

calendar_today

Updated On:

Products

Critical System Protection

Issue/Introduction

 

Resolution

  Historically, the File Integrity Monitoring (FIM) feature has been polling-based. Realtime FIM (RT-FIM) changes that to monitor process access to files more directly, resulting in FIM events coming as soon as the file actions occur. RT-FIM also records the user and process that performed the action.


  File systems that support RT-FIM:

Linux:   Ext2, Ext3, Ext4, Reiserfs, and VFAT

AIX:      JFS, and JFS2

Windows: NTFS, FAT, FAT32, CDROM, and UDF

Watched files or directories residing on other filesystem types will default to polling based file monitoring.