[{"data":1,"prerenderedAt":110},["ShallowReactive",2],{"blog-automated-configuration-change-detection":3},{"id":4,"title":5,"author":6,"body":7,"categories":90,"category":91,"date":92,"description":93,"extension":94,"featured":95,"fields":90,"image":96,"meta":97,"modified":90,"navigation":98,"path":99,"seo":100,"slug":101,"stem":102,"tags":103,"__hash__":109},"blog\u002Fblog\u002Fautomated-configuration-change-detection.md","Automated Configuration Change Detection","Luke Richardson",{"type":8,"value":9,"toc":83},"minimark",[10,15,19,22,26,45,49,56,59,62,68,71],[11,12,14],"h2",{"id":13},"why-file-integrity-monitoring-is-critical","Why File Integrity Monitoring Is Critical",[16,17,18],"p",{},"How important is File Integrity Monitoring? This is a difficult question because depending on the status of your network you may have very different answers. If you have a perfectly functioning network, you may say it is important, but not critical. However, if you have a device that is not working correctly or even a suspected privacy leak, this becomes critical.",[16,20,21],{},"For both cases, the answer should be critical -- prevention is always better than cure. Every week there is a new report about a database that was compromised or a cryptocurrency miner that was installed unbeknown to anyone.",[11,23,25],{"id":24},"monitoring-critical-directories","Monitoring Critical Directories",[16,27,28,29,33,34,37,38,33,41,44],{},"One step in the prevention of these events is to monitor files and folders that are critical to operations, directories such as ",[30,31,32],"code",{},"C:\\Windows\\System32"," or ",[30,35,36],{},"C:\\Windows\\Program Files"," on Windows, or ",[30,39,40],{},"\u002Fbin\u002F",[30,42,43],{},"\u002Fetc\u002F"," on Linux.",[11,46,48],{"id":47},"how-open-audit-enterprise-helps","How Open-AudIT Enterprise Helps",[16,50,51],{},[52,53],"img",{"alt":54,"src":55},"Configuration changes view in opConfig","\u002Fimages\u002Fblog\u002Fopconfig-changes.png",[16,57,58],{},"Open-AudIT Enterprise can automatically detect configuration changes in files or folders -- this is a query that ships with the software. With every query for Open-AudIT Enterprise users, this can be scheduled: you could have this run weekly, daily, hourly, or even every 10 minutes if you need to.",[16,60,61],{},"The process is straightforward to initialize, and if it is ever needed, you will look like a god for thinking of it in advance. This is just scratching the surface of what is possible with automated change detection.",[16,63,64],{},[52,65],{"alt":66,"src":67},"Discovery, auditing and compliance process diagram","\u002Fimages\u002Fblog\u002FDiscovery-Auditing-Compliance-Process-Diagram-FirstWave.png",[69,70],"hr",{},[16,72,73,77,78],{},[74,75,76],"strong",{},"Related reading:"," ",[79,80,82],"a",{"href":81},"\u002Fblog\u002Ffile-and-folder-audit-and-automation\u002F","File and Folder Audit and Automation",{"title":84,"searchDepth":85,"depth":85,"links":86},"",2,[87,88,89],{"id":13,"depth":85,"text":14},{"id":24,"depth":85,"text":25},{"id":47,"depth":85,"text":48},null,"Compliance","2018-07-23","How Open-AudIT Enterprise automatically detects file and configuration changes to help prevent security breaches and ensure compliance.","md",false,"\u002Fimages\u002Fblog\u002FOpen-AudIT-Files-700.png",{},true,"\u002Fblog\u002Fautomated-configuration-change-detection",{"title":5,"description":93},"automated-configuration-change-detection","blog\u002Fautomated-configuration-change-detection",[104,105,106,107,108],"open-audit","change detection","file integrity","compliance","security","9ZtTWxkHjeQ2p4bZIFjUZ8X68Or-ZBwQO6jlQnWMF8g",1782795868756]