Audit comments in Elisity Cloud Control Center provide a structured way to capture the intent behind the creation of or changes to Policy Groups, Security Profiles, and manually configured device attributes. While audit comments are always available, enabling mandatory audit comments ensures that each modification is documented in audit logs, supporting compliance, accountability, and easier policy reviews.
Audit comments are captured in Cloud Control Center Monitoring > Audit Logs, which can be filtered and exported for data processing. Audit comments require a minimum of 10 characters, up to 254 characters.
Why Use Audit Comments?
- Enhances visibility and accountability for security changes.
- Ensures compliance with internal and external audit requirements.
- Provides historical context for policy modifications.
Enabling Mandatory Audit Comments
Go to Settings in the main navigation.
Under System > Advanced, toggle Enforce Audit Comments to activate the requirement for audit comments on policy changes.
Adding an Audit Comment When Creating or Updating Security Profiles
- In Policies > Security Profiles choose to create a new item or edit an existing one.
- Enter a brief note in the Audit Comment field to document the reason for the change.
- Click Create or Save to finalize the action. If the minimum length for the audit comment is not met, you will not be able to save the change. The audit comment will be recorded as part of the change history.
Audit Comments for Manually Configured Attributes
Audit comments can be enforced for any manually configured attribute, requiring Cloud Control Center admins to include an audit comment along with any changes made to the attributes of a device.
- In Devices > Edit Device enter a brief note in the Audit Comment field to document the reason for the change.
- Click Create or Save to finalize the action. If the minimum length for the audit comment is not met, you will not be able to save the change. The audit comment will be recorded as part of the change history.
Adding an Audit Comment When Creating or Updating Policy Groups
- In Policies > Security Profiles choose to create a new item or edit an existing one.
- Enter a brief note in the Audit Comment field to document the reason for the change.
- Click Create or Save to finalize the action. If the minimum length for the audit comment is not met, you will not be able to save the change. The audit comment will be recorded as part of the change history.
Reviewing Audit Comments in Audit Logs
Audit comments are logged and can be reviewed in Monitoring > Audit Logs. This ensures all policy and security profile modifications are trackable and documented for future reference.