Skip to main content
McAfee MVISION Cloud

Create a File Integrity Monitoring Policy

To create a File Integrity Monitoring policy, start with the preconfigured policy template, then edit the policy to pertain to your service account and instance.

MVISION Cloud supports only Observe mode for Linux, and the policy rule is not editable. The policy validates files managed by containers, not VMs. 

To create a File Integrity Monitoring policy:

  1. Go to Policy > Policy Templates
  2. Under Policy Type, filter for File Integrity
  3. In the table view, select Monitor critical system files for containers, and click Create Policy.
    fim_create_policy_1.png
  4. In the dialog, click Create Policy
    fim_create_policy_2.png
  5. Edit the policy in the Policy Wizard.
    fim_create_policy_3.png 
    • Name. Add a unique name. (The description cannot be edited.)
    • Policy Mode. Only Observe is supported. 
    • Platform. Only Linux is supported. 
    • Accounts. Click Select Accounts and select the service and instances you want to monitor. Click Done
      fim_create_policy_4.png
    • Tags. Add any tags, keys, and values you want to include. 
  6. Click Next
  7. The Rules for the policy are not editable. 
    fim_create_policy_5.png
  8. Click Next
  9. Edit the Responses as necessary. 
    fim_create_policy_6.png
  10. Click Next
  11. Review your policy changes and click Save
    fim_create_policy_7.png

The new policy is displayed on the File Integrity Policies page, and set to active.

FIM Policy Incidents are reported on the Policy Incidents Page

FIM Resources are displayed on the Resources Page

  • Was this article helpful?