Definition

Show change documents for security policies in raw form.

Use

When this indicator is set, change documents for security policies are visualized as flat list based on the data on the database. No items are added or removed by the report.

When the indicator is not set (default), the change documents are prepared by the report considering the specific handling of security policy attributes, making it easier to understand the effect of the change for the runtime behavior of the system:

• When security policies are created, attribute rows are automatically generated for those attributes that were not explicitly provided during creation. By containing the default values for the attributes, you can see which attribute value is in effect at a given time.
• When a new attribute is added to a security policy or an attribute is removed from the security policy, the "old value" respectively "new value" field, which is empty in the change document, is automatically populated with the default value for the attribute, so you can see whicheffective value change happens by this change.
• When a security policy is deleted, the change documents that log the deletion of the subordinate attribute values are not shown, as they are not relevant to understand the new effect of the policy.
• Changes that do not change the effect of an attribute are removed (example: an attribute is added explicitly but with the same value as the default value).
• Data are visualized in hierarchical form, with the change document/security policy as header item, and the attribute changes as subordinate items.

Dependencies

Example