Policies feature helps you to create policies that help centrally control and manage the users belonging to a group. You can create two types of policies,
- Container policy – Container policy is a combination of all features.
- Feature policy – Feature policy is used for specific feature. The feature policy overrides the container policy.
- Windows Server Container Policy – A Windows Server Container Policy has been introduced, for Seqrite EPP clients running on Windows Server Operating Systems.
On the Policies page, you can view the following details:
| Column Header | Description |
|---|---|
| Policy Name | The name of the policy. |
| Type | The category or classification of the policy (Container Policy / Feature Policy / Windows Server Container Policy). |
| Description | A brief overview of the policy’s purpose and function. |
| Policy Status | Clicking on the View details link of a Policy on the Policy Listing page opens the Policy Insight popup. This popup displays the following information:
|
Policy Difference Tracking through Audit Log
The Activity Logs track all changes made to policies, providing detailed information on policy modifications. Each change is recorded, including the previous and updated policy settings, organized by section. If a user modifies settings in any section, those specific changes are logged. The logs also capture what actions were taken during policy edits, creating a full audit trail of policy modifications.
Key Features
- New Policy Creation: When a new policy is created, the activity log records the message "New Policy Created". No detailed differences are shown at this stage.
- Subsequent Saves: After a policy is saved again, the activity log will display a link that allows you to view the differences between the old and new policy. The log shows exactly what has changed.
- Re-Applying a Policy: If the policy is saved without changes, the link to view the policy differences will still appear in the activity log. However, the message "There are no changes to the policy" will be shown if no modifications were made.
- Viewing Policy Differences: When viewing the differences, the following details will be shown:
- Policy Setting: The setting that was changed.
- Before Value: The value before the change.
- After Value: The value after the change.
- Action Taken: Whether the setting was Added, Deleted, or Modified.
- Categorizing Changes:
- If a setting is added, it will show as Added, with the previous value as "No Data."
- If a setting is deleted, it will show as Deleted, with the new value as "No Data."
- If a setting is modified, both the old and new values will be displayed.
- Displaying List Items: When multiple settings are part of a list, they will be displayed together on the same row, with each setting and its value separated by a colon.
- Order of Changes:
The order of changes will be the same as the feature sequence in the policy. - Older Activity Logs: Older logs will not show the link to view policy differences. This feature is available only for new changes.
- Activity Log Export: The process for exporting activity logs remains unchanged.
- Deleting Policy Differences: The policy difference logs are automatically deleted based on the admin settings.
Limitations
- Audit Log Export: Exporting audit logs is not available in this release.
- Global Configuration Changes: Changes to global settings will not appear in the activity logs unless they are saved as part of the policy.
- Role-Based Activity Logs: Role-specific activity logs are not available.
This process ensures that all changes to policies are tracked clearly, providing a transparent view of modifications.