To get to this page: Select Controls from the left menu. Go to New > Control. Click the Windows Control Types tab. Click Get Started for the File/Directory Existence control type. (Or click edit for any control of this type you want to change.)
The Windows File/Directory Existence control type checks for the existence of a user-specified file or directory on a Windows system.
Once saved, the service will assign the control a unique control ID (CID). The CID is visible when you edit the control and when you view Technical Control Information from the controls list.
In the General Information section, provide basic information for the control, including a control statement and category. See General Information for details.
In the Scan Parameters section, specify the scan parameters that the scanning engine will use to gather data for the control. The scan parameters combined make up a single data point. You must also enter a description for the data point, which will appear in compliance policies and reports.
File/Directory path. When creating a File/Directory Existence control or a File/Directory Permission control, you must provide the path to the file or directory on your Windows system. You may enter the exact path (for example c:\windows\system32\config) or use a system variable in the path (for example %windir%\system32\config). The following system variables are supported:
%SystemRoot%
%windir%
%ProgramFiles%
%CommonProgramFiles%
Data Type. (View only) The data type of the value returned by the scanning engine. For a file/directory existence control this is set to "Boolean" by default.
Description. Enter a description for the custom control which will appear in compliance policies and reports.
Click Add Parameters to add parameters and close the Scan Parameters window. You will notice the Edit Parameters button is available. Click this button to edit parameters before saving the control.
See also:
Add/Edit Scan Parameters in a New Control
Update the Data Point Description in an Existing Control
In the Control Technologies section, identify the technologies applicable to the control. For each technology, provide a rationale statement and set the default control value.
Rationale. Enter a rationale statement describing how the control should be implemented for each technology.
Default Value. Select the default expected value (True or False) for each technology. Select the Lock Value option to lock the default value. When locked, users cannot change the default value in the Policy Editor.
In the References section, add or remove references to internal policies and documents. See References for details.