I have several ARC servers (installed on AWS EC2 vms) that have FIM deployed via quick fix for a security recommendation made by Defender for Cloud. The servers are running the Azure Monitoring Agent, there is a Data Collection Rule in place that targets a Log Analytics workspace in the same region. The Log analytics workspace has both the Security and Change Tracking solutions. When checking heartbeat or usage in the Logs for these machines, I can see that changetracking is sending heartbeat
FIM is not sending configuration changes for the files or registry keys specified by default, or added by me for testing. There are no logs in the ConfigurationChange table for the Log analytics workspace mentioned above (or at all as far as I can tell).
I'm not certain what else to check here, documentation is very sparse on this issue (apparently the only requirements being Defender for Servers 2 (which we have) and the Azure Monitor Agent being installed on the target servers (which it is)