About the Object Integrity module

The Object Integrity module reports changes in ownership, permissions, and device IDs.

When this module checks the UNIX file permissions, the module examines only user/ group/other and read/write/execute permissions. It does not consider extended permissions such as access control lists (ACLs), which are available on some UNIX operating systems and some third-party extensions.

The module also creates and maintains the sifdev.dat device snapshot files. Run the module one time to create the baseline snapshot file on each agent, then periodically rerun the module to detect changes.

The UNIX Object Integrity module has three security checks that let you update records in the sifdev.dat snapshot file to match current values on the agent. Snapshot-updatable messages display the letters SU in the Updatable/ Correctable column of the console grid.