Table of Contents
- Getting Started
- Agent-Based Management
- Data Providers
- Directory Services
- Event Log Archiving for JSIG and CMMC Compliance
- Auditing
- Hosts
- Templates
- Template Properties
- Batch Update Templates
- Assign Templates
- Log Management Templates
- SCAP Compliance Monitor
- File and Directory Monitor Templates
- Windows Monitor Templates
- Account Lockout Monitor Template
- Logon Monitor Template
- CPU Monitor Template
- Memory Monitor Template
- Disk Space Monitor Template
- SMART Monitor Template
- Process Monitor Template
- Service Monitor Template
- Performance Counter Monitor Template
- PowerShell Template
- Registry Value Monitor Template
- System Security Monitor Template
- Active Directory User Monitor Template
- Active Directory User Integrity Monitor Template
- Task Scheduler Template
- Clock Synchronization Template
- Defragment NTFS Disks Template
- Windows Audit Policy Monitor Template
- Windows Logon As Monitor Template
- Windows Update Template
- Windows Management Instrumentation (WMI) Templates
- Database Monitor Template
- Directory Service Monitor Template
- DNS Blacklist Monitor Template
- DNS Monitor Template
- Domain Expiration Monitor Template
- Network Speed Monitor Template
- Ping Monitor Template
- Database Table Reseed
- SQL Server Shrink and Backup Template
- SSH Shell
- TCP Port Scan Monitor Template
- Website Monitor Template
- Wake On LAN Template
- SSL Certificate Monitor Templates
- Email Monitor Templates
- SNMP Monitor Templates
- Windows Accounts Templates
- Monitors
- Reports
- File and Permission Reports
- Summary Reports
- Auto-Configurators
- Filters
- Actions
- Database Actions
- Desktop Actions
- Email Actions
- Event Log Actions
- Executable Actions
- File Actions
- IIS IP Address Restriction Actions
- Microsoft Teams Actions
- PowerShell Actions
- Report Actions
- Service Actions
- SMS Actions
- SNMP Trap Actions
- Syslog Actions
- Template Actions
- IIS IP Address Restriction Actions
- Action Variables
- Schedules
- Environment Variables
- Options
- Account Lockout Monitoring and Reporting
- Merging Logs
- SNMP
- SSH Shell
- Syslog
- Exporting and Importing Configuration Objects
- Shared Views
- Active Directory User and Group Filters
- Assign Actions
- Assign Azure Audit Logs
- Assign Consolidated Logs
- Assign Directories
- Assign Disks
- Assign Event Logs
- Assign Files
- Assign Services
- Assign Shares
- Auto-Config Host Assignment Properties
- Define CSV and W3C Log Entry Columns
- Define Log Entry Columns
- Define Log Entry Columns with Regular Expressions
- Executable Status
- Executable Timeline
- Explicitly Assigned Logs
- File Explorer
- General Executable Properties
- Report Columns
- Report Date/Time Ranges
- Report Security Event Log Filters
- Select Folder or File
- Target Files and Sub-Directories
- Command Line Interface
- Server Configuration
- Agent Configuration
- Troubleshooting
- Terminology
Corner Bowl Server Manager
SIEM, IPS, Server Monitoring, Uptime Monitoring and Compliance Software
Directory Watcher Monitor Template
The Directory Watcher Monitor Template enables you to trigger actions including appending detail to a CSV file every time a file or sub-directory is created, modified, deleted and renamed without Object Access Auditing enabled. Further configure the Directory Watcher to limit results to a specific set of files using inclusion and exclusion masks. For example, log all changes to files with a .txt extension but exclude files named *_output.txt. Results can be emailed or simply logged to a CSV file fulfilling compliance requirements.
The Directory Watcher Monitor Template uses Windows Shares to subscribe to file system updates in real-time.
How to configure the Directory Watcher Monitor Template:
- From the Menu Bar, select File | New. The Create New Object View displays.
- From the Create New Object View, expand Templates | File and Directory Monitors then select Directory Watcher Monitor. The New Template Properties View displays.
- The Template Properties view contains 5 tabs.
The Options Tab
- Use the Directories drop-down to select the directory to configure.
Note
Use the Files and Sub-Directories tab to specify the files and sub-directories to target and exclude.
- Use the Changed, Created, Deleted and Renamed check boxes to enable the events you would like to monitor.
- Use the Set monitor state option to set the monitor state to execute either warning and critical actions.
| Set monitor state | State | Action | |
|---|---|---|---|
| Disabled | N/A | Monitor state not set. Warning actions executed. | |
| Enabled |  | OK | Monitor state not set. Warning actions executed. |
| Enabled |  | Warning | Monitor state set to Warning. Warning actions executed. |
| Enabled |  | Critical | Monitor state set to Critical. Critical actions executed. |
Real-Time Directory Watcher Monitor Trigger Properties