A system administrator has deployed a new tool to monitor system files for unauthorized changes on a set of critical servers. After configuring the tool, the administrator needs to determine the optimal strategy for maintaining system integrity. Which of the following approaches would be most effective in meeting this goal?
Configure the monitoring tool to rely on user reports of unauthorized file changes.
Set up alerts to notify the administrator of any changes in the size of the monitored files only.
Implement automatic comparisons of file states against a trusted baseline at regular intervals.
Set up the tool to allow only manual integrity checks during scheduled maintenance windows.