Maintaining the PCI FIM Discover and Snapshot Jobs

To keep the PCI-FIM change tracking process complete and accurate:

• Remember to consider or review the component template parts definitions when you add new applications and new file systems to your environment.
• If the same files consistently appear as changed and the changes are consistently deemed valid, consider creating exclusion rules to remove these files from the snapshot process, and conserve database space.

The following procedures are recommendations for automating or eliminating maintenance tasks for the PCI-FIM change-tracking process:

• Creating server smart groups for FIM-PCI change tracking. The smart group feature automatically updates the groups with new objects that fit the smart group definitions. If you are using smart groups, you do not need to manually keep track of and add new servers to your change tracking process.
• Creating a Batch Job that combines the Discovery and Snapshot Jobs. The Batch Job ensures that new objects are always discovered and that Snapshot Jobs are always running against the current set of discovered objects.