Skip to main content

Check out Interactive Visual Stories to gain hands-on experience with the SSE product features. Click here.

Skyhigh Security

Create a File Integrity Monitoring Policy

To create a File Integrity Monitoring policy, start with the preconfigured policy template, then edit the policy to pertain to your service account and instance.

Skyhigh CASB supports only Observe mode for Linux, and the policy rule is not editable. The policy validates files managed by containers or VMs.  

To create a File Integrity Monitoring policy:

  1. Go to Policy > Policy Templates
  2. Under Policy Type, filter for File Integrity
  3. In the table view, select Monitor critical system files for containers or Monitor critical system in a VM, and click Create Policy.
    FIM_Policy_Template.png
  4. In the dialog, click Create Policy
    fim_create_policy_2.png
  5. Edit the policy in the Policy Wizard.
    fim_create_policy_3.png 
    • Name. Add a unique name. (The description cannot be edited.)
    • Policy Mode. Only Observe is supported. 
    • Platform. Only Linux is supported. 
    • Accounts. Click Select Accounts and select the service and instances you want to monitor. Click Done
      fim_create_policy_4.png
    • Tags. Add any tags, keys, and values you want to include. 
  6. Click Next
  7. The Rules for the policy are not editable. 
    fim_create_policy_5.png
  8. Click Next
  9. Edit the Responses as necessary. 
    fim_create_policy_6.png
  10. Click Next
  11. Review your policy changes and click Save
    fim_create_policy_7.png

The new policy is displayed on the File Integrity Policies page, and set to active.

FIM Policy Incidents are reported on the Policy Incidents Page

FIM Resources are displayed on the Resources Page

  • Was this article helpful?