Apply to “Domain Controllers” group and “Web Servers” group.

To mitigate this in SEP, best practices include:

File Integrity Monitoring is a security technology that monitors and detects unauthorized changes to files and directories on a system. It tracks and analyzes file modifications, deletions, and creations to identify potential security threats, such as malware, insider attacks, or data breaches. FIM is a critical component of a comprehensive security strategy, as it helps organizations:

Add monitored items:

Symantec Endpoint Protection (SEP) is a comprehensive security solution that includes a robust FIM feature. SEP's FIM monitors files and directories on endpoints, detecting and alerting on suspicious activity. Here are some key benefits of SEP's FIM: