Pivotal File Integrity Monitoring

Page last updated:

Note: Pivotal has renamed File Integrity Monitoring Add-on for PCF. The new name is Pivotal File Integrity Monitoring.

Note: Pivotal has renamed Pivotal Cloud Foundry to Pivotal Platform.

This documentation describes setting up and using Pivotal File Integrity Monitoring (FIM).

Overview

Pivotal File Integrity Monitoring provides logs of file and directory modifications in monitored paths. Operators and auditors use these logs to satisfy security requirements for file integrity monitoring within the Pivotal Platform environment.

You can use FIM to help achieve compliance standards such as the Payment Card Industry Data Security Standard (PCI DSS) or the Health Insurance Portability and Accountability Act (HIPAA).

Key Features

File Integrity Monitoring enables you to:

  • Monitor Pivotal Platform VMs and containers
  • Specify path patterns to exclude
  • Group path patterns under low severity
  • Format log output
  • Provide digest calculations of files

Product Snapshot

The following table provides version and version-support information about FIM.

Warning: FIM Add-on on Windows is in beta.

Element Details
Version 2.0.0
Release date January 7, 2019
Compatible Pivotal Operations Manager versions 2.5, 2.6, 2.7 and 2.8
Compatible Pivotal Application Service (PAS) versions 2.5, 2.6, 2.7 and 2.8
Compatible Pivotal Application Service for Windows (PASW) versions 2.5, 2.6, 2.7 and 2.8
Compatible BOSH stemcells Ubuntu Xenial and Windows 2016, 1803, 2019
IaaS support vSphere, GCP, AWS, Azure, and OpenStack

Limitations

File Integrity Monitoring has the following limitations:

  • Windows support is in beta
  • If you are upgrading from FIM v1.4, you must manually uninstall the runtime configs. For more information, see Upgrading File Integrity Monitoring.