How to exclude certain file/folders/shares from auditing by Netwrix Auditor for File Servers?

Last review: Jan 01, 2019
Copy Article URL Copied

How to exclude files, folders or shares from auditing by Netwrix Auditor for File Servers?

If you do not want to audit every folder and/or file defined on the file server’s shares or are monitoring the whole server but want to omit a specific share, you can omit them using the a special omit file.

1. Navigate to the product installation folder via Windows Explorer (by default: C:\Program Files (x86)\Netwrix Auditor\File Server Auditing)
2. Open omitcollectlist.txt file in any text editor
3. Add the paths you do not want to be audited.  For example:

File Exclusion: \\\\server\\share_folder\\filename
All Files in a Folder Exclusion: \\\\server\\share_folder*
All Folders in a share: \\\\server\\share*

4. Save modifications made to the file.

Note: The above changes will not take effect until the next data collection.  Also this will only omit changes/reads made on those files/folders that are excluded.  It will not omit warnings/error related to those files/folders such as access denied.

Go Up