"

How to exclude certain file/folders/shares from auditing by Netwrix Auditor for File Servers?

Last review: Jan 01, 2019
https://kb.netwrix.com/2321
Copy Article URL Copied

How to exclude files, folders or shares from auditing by Netwrix Auditor for File Servers?


If you do not want to audit every folder and/or file defined on the file server’s shares or are monitoring the whole server but want to omit a specific share, you can omit them using the a special omit file.

1. Navigate to the product installation folder via Windows Explorer (by default: C:\Program Files (x86)\Netwrix Auditor\File Server Auditing)
2. Open omitcollectlist.txt file in any text editor
3. Add the paths you do not want to be audited.  For example:

File Exclusion: \\\\server\\share_folder\\filename
All Files in a Folder Exclusion: \\\\server\\share_folder*
All Folders in a share: \\\\server\\share*

4. Save modifications made to the file.

Note: The above changes will not take effect until the next data collection.  Also this will only omit changes/reads made on those files/folders that are excluded.  It will not omit warnings/error related to those files/folders such as access denied.

Go Up