Navigation:  Monitoring with EventSentry > System Health Monitoring > File Change Monitoring >

Managing Directories

 Top  Previous  Next

To add a directory, click the + icon in the "File Monitoring" section which will bring up the "Add / Edit Monitored Folder" dialog. This dialog lets you specify

 

Which directory to monitor
Which files to monitor inside the directory
Which attributes/properties to monitor
Whether you would like to generate event log alerts upon changes
Whether to record changes in the database

 

clip0167

 

First, specify the directory to monitor in the "Folder" field or click the "Browse" button to browse for a folder. You can use environment variables such as %SYSTEMROOT% in the path name. Next, you need to specify which files inside the folder to monitor, and which changes you want to track.

 

Alert or Warning 1 24 n g

File names and paths need to be specified relative to the monitored folder. For example, if you are monitoring the folder C:\Logfiles, but want to exclude any file in the Temp sub directory (C:\Logfiles\Temp), then you would need to specify the filter as Temp\*.*.

 

Files

By default, the agent will monitor all files in the specified directory, but you can customize how files are monitored in the specified directory. You can either monitor all files with the exception of a few, or only monitor a certain set of files.

 

Include all files in the selected folder, except for exclusion below

This setting will monitor all files in the selected folder, with the exception of files and/or wildcards listed in the "Exclusions" list. As such, click the + and - icons to add and remove files that should be excluded from monitoring.

 

Please keep in mind that if wildcard support is activated, that you will need to include wildcards if you are not specifying the full file name. For example, to exclude all files with the "dll" extension, enter *.dll.

 

Only monitor files that are included below

This setting enables you to only monitor a particular set of files in the specified directory. As such, click the + and - icons to add and remove files that should be monitored. For example, to monitor all executable files in a directory, click the + icon and enter *.exe.

 

Monitor the following changes

Detect File Additions: Detects when new files are added to the directory

Detect File Deletions: Detects when files are deleted from the directory

Detect File Checksum Changes: Detects when the checksum of a file changes, using a 256-bit SHA checksum

Detect File Size Increases: Detects when the size of a file increased

Detect File Size Decreases: Detects when the size of a file decreased

 

Alerts

You can have the agent log an event to the application event log when a change has been detected, and you can track all changes in a selected database.

 

Log to Event Log as: Logs changes to the application event log with the specified severity, see Event Log for more details on events that can be logged by this feature.

Log to Database: Records changes to the database selected in the parent dialog.