Showing results for 
Search instead for 
Did you mean: 
Level 9

Setting Up Custom Signatures - Seperate out?

I want to set up some custom signatures to monitor critical config files, services and registry keys etc. for different server types, so for example I might want to monitor a handful of config files on my AV servers, some services on my monitoring servers and another mixture on my file servers.

Is it viable to set all these up under one policy for example 'My Default' so that the policy is applied to all servers whether they have the files/services/registry or not, so for example:

I'm monitoring config.file XXX.ini on an ePO Server, but the policy is also applied to my file server which doesn't have that file.

Would I experience any issues or performance impact at all or should I create a seperate policy for each server type similar to what you would do for VirusScan exclusions?



0 Kudos