File integrity monitoring with PRTG

If your organization operates in a regulated industry like financial services or health care, or services individuals in the EU and, so, is subject to GDPR, a file integrity monitoring solution makes it easier to prove to regulators you're complying with the applicable rules, because it's tangible evidence that you're tracking system files and keeping a close eye on who can access them and any changes. With PRTG, you can also create custom reports (for both regulators and auditors) with a few clicks.

But it's worth using a file integrity monitoring tool even if you're none of the above. Bad actors are continuously adapting, using increasingly sophisticated techniques to gain access to organizations' networks and the sensitive data they hold.

A FIM tool like PRTG alerts you as soon as there's activity that seems like it could be a cyberattack. And, having access to robust threat intelligence means you’ll have a safer network and safer customer data (and a lower risk of PR disasters).

PRTG is a file integrity monitoring solution that tracks, evaluates, and reports every modification to the files stored on your system. Think of it as CCTV for the critical files that keep your network – and your organization – running smoothly. Available for Windows-based on-premises servers or as a cloud-hosted solution, it's capable of monitoring unlimited local, remote, and virtual devices round the clock, so you can identify unintended or suspicious changes, and pinpoint and neutralize potential data breaches and other cybersecurity threats such as malware more quickly.

First, define a policy. Which files on your system do you want to monitor, and where are they stored?

Second, establish a baseline. That is, a definitive version of each file which the file integrity monitoring system will use to detect changes.

Third, monitor the files. With PRTG, this is as simple as assigning sensors to your endpoints and letting them do the work. You can either set it to calculate a checksum on files’ properties, or compare the live file to a backup. To minimize the risk of false positives, you can promote expected changes ahead of time. PRTG also sends you automatic in-app, text, or email notifications if there are any unauthorized or unexpected changes.

Need to prove you’re meeting the compliance requirements of PCI DSS, HIPAA, GDPR, or other industry regulations or standards? The final step is to generate reports of your monitoring activity.

Yes, you can. Set up remote probes close to the endpoints of the folders, databases, or other file systems you want to monitor. PRTG will gather the data and send it to your core server so you can see everything at a glance.

Yes. PRTG can keep an eye on hosts, bootloader, profiles, cron jobs, run comments, kernel parameters, and services and daemons in Linux and other Unix-based operating systems. You can do this either via SMB or SSH secure shell.

In PRTG, “sensors” are the basic monitoring elements. One sensor usually monitors one measured value in your network, for example the traffic of a switch port, the CPU load of a server, or the free space on a disk drive.

On average, you need about 5-10 sensors per device or one sensor per switch port.