File Integrity Monitoring
File Integrity Monitoring (FIM) examines operating system files, Windows registries, application software, and Linux system files for changes that might indicate an attack.
The only way to enable FIM after the deprecation of Azure Monitor Agent (AMA) and Log Analytics agent (MMA) is by using Microsoft Defender for Endpoint.
Microsoft Defender for Endpoint
Microsoft Defender for Endpoint is an enterprise endpoint security platform designed to help organizations prevent, detect, investigate, and respond to advanced threats.
Be aware that FIM using Microsoft Defender for Endpoint is currently in preview. As such, this feature is still under development and might not be fully stable. By enabling this feature, you acknowledge and accept the potential risks, including limited support, potential functionality changes, and the possibility of service disruptions. Microsoft does not provide any service-level agreements (SLAs) for preview features, and they should not be used in production environments.
Prerequisite
Enable Microsoft Defender for Servers Plan 2 (refer to the Microsoft Defender for Cloud pricing page for associated costs), along with its subcategories: Endpoint protection and agentless scanning.