This article is for enabling and disabling Realtime File Monitoring for Windows servers
Current online documentation is incorrect. Windows servers don't recognize the -rtfim flag. Currently we are working on changing the documentation
To enable real-time file integrity monitoring on a Windows computer
On the Windows agent computer, open a command prompt, and run the sisipsconfig.exe -rtfim on
Restart the agent computer to load the real-time file integrity monitoring kernel mode drivers
To enable or disable Realtime File Integrity Monitoring you need to edit the Detection Parameters in the Java Console and re-push the policy out to the agent.