Skip to content

Update considerations for file integrity monitoring#535

Open
Tungsten66 wants to merge 2 commits into
MicrosoftDocs:publicfrom
Tungsten66:patch-5
Open

Update considerations for file integrity monitoring#535
Tungsten66 wants to merge 2 commits into
MicrosoftDocs:publicfrom
Tungsten66:patch-5

Conversation

@Tungsten66

Copy link
Copy Markdown
Contributor

Added current limitation - Custom file and directory path monitoring rules are currently supported only for Azure virtual machines. Custom path monitoring isn't supported for non-Azure machines connected through Azure Arc.

Added current limitation - Custom file and directory path monitoring rules are currently supported only for Azure virtual machines. Custom path monitoring isn't supported for non-Azure machines connected through Azure Arc.
@prmerger-automator

Copy link
Copy Markdown
Contributor

@Tungsten66 : Thanks for your contribution! The author(s) and reviewer(s) have been notified to review your proposed change.

@prmerger-automator

Copy link
Copy Markdown
Contributor

@Tungsten66 : Thanks for your contribution! The author(s) and reviewer(s) have been notified to review your proposed change.

@learn-build-service-prod

Copy link
Copy Markdown
Contributor

Learn Build status updates of commit d16812a:

✅ Validation status: passed

File Status Preview URL Details
defender-for-cloud/file-integrity-monitoring-enable-defender-endpoint.md ✅Succeeded

For more details, please refer to the build report.

@learn-build-service-prod

Copy link
Copy Markdown
Contributor

Learn Build status updates of commit 9c36ecb:

✅ Validation status: passed

File Status Preview URL Details
defender-for-cloud/file-integrity-monitoring-enable-defender-endpoint.md ✅Succeeded

For more details, please refer to the build report.

Copilot AI left a comment

Copy link
Copy Markdown
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

Adds an explicit limitation to the File Integrity Monitoring documentation so readers understand where custom path monitoring is supported.

Changes:

  • Documented that custom file/directory path monitoring rules are supported only on Azure virtual machines (not Arc-connected non-Azure machines).
  • Reformatted the “Considerations and limitations” section into a bullet list and preserved the existing Linux sensor Create/Modify limitation.


The current Linux sensor doesn't distinguish between Create and Modify actions.
It identifies both as Modify actions. As a result, when a new file is created, the event is logged as a Modify event rather than a Create event.
- Custom file and directory path monitoring rules are currently supported only for Azure virtual machines. Custom path monitoring isn't supported for non-Azure machines connected through Azure Arc.
@v-dirichards

Copy link
Copy Markdown
Contributor

@ElazarK

Can you review the proposed changes?

Important: When the changes are ready for publication, adding a #sign-off comment is the best way to signal that the PR is ready for the review team to merge.

#label:"aq-pr-triaged"
@MicrosoftDocs/public-repo-pr-review-team

@prmerger-automator prmerger-automator Bot added the aq-pr-triaged Tracking label for the vendor PR Review team label Jul 10, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Projects

None yet

Development

Successfully merging this pull request may close these issues.

4 participants