Use the configs to tell the agent what to send to the manager. Both the Detection and Prevention configs have a default "Do not send", so if a config is empty, nothing will be sent to the manager.
The IPS side of the house will tell you "Who" while the IDS side cannot tell you "Who" without you enabling the Windows Object Auditing (which taxes system resources).
I think the best bet for you would be to use a custom Prevention policy that watches the directory in question, and is set to "Allow but Log". This will generate IPS events every time someone touches the file.
From there you can go into the Prevention Config and set a log rule: "User Name" "Not Equals" "<username(s)>" and set to "Transmit in Real time". The rules are processed in order, so it may be necessary to move this rule to the top of the list.
Apply the Prevention Config to the assets you want this to apply to.
This will result in the agent still logging the event, but it will not send the event to the manager when the user or users you listed touch the file.