Kaseya Community

File Integrity Monitoring for PCI Compliance

  • Hello There,
    Is there any way through Kaseya or a Kaseya script to be able to perform File-integrity monitoring to alert myself to unauthorized modification of any given file. This is for PCI compliance. Thanks for any thoughts/insights-

    Kris

    Legacy Forum Name: File Integrity Monitoring for PCI Compliance,
    Legacy Posted By Username: krisj@odusa.org
  • krisj@odusa.org
    Hello There,
    Is there any way through Kaseya or a Kaseya script to be able to perform File-integrity monitoring to alert myself to unauthorized modification of any given file. This is for PCI compliance. Thanks for any thoughts/insights-

    Kris


    Off the top of my head...

    Script Name: MD5Sum check
    Script Description: Checks for the MD5Sum of a file.

    IF True
    THEN
    Write File
    Parameter 1 : #vAgentConfiguration.agentTempDir#\MD5sum.exe
    Parameter 2 : VSASharedFiles\md5sum.exe
    OS Type : 0
    Execute Shell Command
    Parameter 1 : #vAgentConfiguration.agentTempDir#\MD5sum.exe #filetoCheck# >> #vAgentConfiguration.agentTempDir#\md5sum.txt
    Parameter 2 : 1
    OS Type : 0
    Get File
    Parameter 1 : #vAgentConfiguration.agentTempDir#\md5sum.txt
    Parameter 2 : md5sum.txt
    Parameter 3 : 0
    OS Type : 0
    ELSE



    It needs a bit of work to check multiple files on the same machine.

    You could also use Distribute File to enforce the file, then raise an alert if there is a Protection Violation. That might be easier in some scenarios.

    Andrew

    Legacy Forum Name: How-To,
    Legacy Posted By Username: andrew.doull@computer-care.com.au
  • Thanks! I will give this a try-

    Legacy Forum Name: How-To,
    Legacy Posted By Username: krisj@odusa.org