Require that a description, tag or audit comment be entered
when creating or editing a policy rule.
When creating or modifying rules, you can
require a rule description, tag, and audit comment to ensure your
policy rulebase is correctly organized and grouped, and to preserve
important rule history for auditing purposes. By requiring a rule
description, tag, and audit comment, you can simplify your policy
rulebase review by ensuring that rules are appropriately grouped,
and that the rule change history is tracked when creating or modifying
a rule. For uniformity, you can set specific requirements for what
the audit comment can include.
By default, enforcement of a description, tag, and audit comment is not enabled. You can specify
whether a description, tag, audit comment, or any combination of these three is
required to successfully add or modify a rule. The audit comment archive allows you
to view the audit comments entered for a selected rule, review the configuration log
history, and compare rule configuration versions.
The
audit comment history includes all the comments entered for a selected policy
rule, including the audit comments entered for the policy rules that existed
before with the same name.