Remotely configuring BMC Defender File Integrity Monitor Adapter

The behavior and operation of the CO-Fmon.exe program are completely driven by its single configuration file, residing in the same directory as the program with a .cnf suffix. This configuration file does not necessarily have to be modified or adapted for the enterprise. However, depending on the organizational requirements, it might be necessary to make changes to this file in order to receive particular messages of interest.

You can manually edit this file, and restart the CO-Fmon.exe program (using the Windows BMC Defender FIM Adapter service entry of the service manager). This requires administrative access to the Windows platform that is hosting the CO-Fmon.exe program and is the most secure way of implementing this service.

As a special facility, you can remotely download and upload configuration files to effect changes in an automated way. This requires various permissions and adaptations described in this section. Specifically, remote configuration capability is limited by the value of the ListenAuthMode directive within CO-Fmon.cnf file that controls and limits remote request using the source address of the client, or using passkey, or both. The default ListenAuthMode setting is 3 that requires both a valid passkey and also the client to be at the same IP address as the destination address.

Remote configuration capabilities of the CO-Fmon.exe program permit a high degree of flexibility, security, and maintainability of this program. This section is of interest to system installers, administrators, and operations personnel.

Additional notes

  • The remote configuration capability of the CO-Fmon.exe program increases program maintainability by permitting administrators to access, modify, and upload configuration changes.
  • The CO-Fmon.exe program authentications remote configuration requests by IP address, passkey or both. These values cannot be changed by the remote configuration process, but must be manually set in the configuration file.
  • You can perform the remote configuration using the BMC Defender web interface by first enabling remote configuration on the Device Information screen.
  • You can execute remote configuration using the rfmconf.exe program, that is a command line utility program that can download, upload, and check remote configuration data.

This section provides information about the following topics:

 

Tip: For faster searching, add an asterisk to the end of your partial query. Example: cert*