File Server Resource Manager and file groups
The File Server Resource Manager (FSRM) role offers various features, including file screening. File screening allows file servers to monitor all shares in real time for any modifications to known ransomware extensions. If a user becomes infected with ransomware and attempts to modify their files, the file screen will detect this activity and deny the user access to the file shares, protecting the rest of the files from damage. This can help prevent or mitigate the impact of a ransomware attack.
The FSRM service can be added to existing file shares that are using Server Message Block (SMB) and integrated with AD.
To enable file screening, it uses a feature called File Group that consists of filename patterns to monitor, such as .xyz or .ctbl. By setting up this type of group, you can keep an eye on these patterns and take action if they appear on your server.
At this time, there are over 5,000 different extension types that are...
