How to exclude files, folders or shares from auditing by Netwrix Auditor for File Servers?
If you do not want to audit every folder and/or file defined on the file server’s shares or are monitoring the whole server but want to omit a specific share, you can omit them using the a special omit file.
1. Navigate to the product installation folder via Windows Explorer (by default: C:\Program Files (x86)\Netwrix Auditor\File Server Auditing)
2. Open omitcollectlist.txt file in any text editor
3. Add the paths you do not want to be audited. For example:
File Exclusion: \\\\server\\share_folder\\filename
All Files in a Folder Exclusion: \\\\server\\share_folder*
All Folders in a share: \\\\server\\share*
4. Save modifications made to the file.
Note: The above changes will not take effect until the next data collection. Also this will only omit changes/reads made on those files/folders that are excluded. It will not omit warnings/error related to those files/folders such as access denied.