Policy audit codes

The following table explains the policy audit codes generated for policy-related operations. These logs are sent to ESA, and can be viewed in Discover, by logging into the ESA and navigating to Audit Store > Dashboard > Open in new tab, select Discover from the menu, and select a time period such as Last 30 days.
Log CodeLog DescriptionDescription of the event
50Policy createdGenerated when a new policy was created in Policy management in ESA.
51Policy updatedGenerated when a new policy was updated in Policy management in ESA.
52Policy deletedGenerated when an existing policy was deleted from Policy management in ESA.
56Policy role createdGenerated when a new policy role was created in Policy management in ESA.
57Unprotect access revoked for users having mask conflictGenerated when mask conflict occurs.
71Policy deployedGenerated when a policy was sent for deployment to a PEP Server.
75Policy added to datastoreGenerated when a new data store was added to a policy.
76Policy changed stateGenerated when a policy has changed its state to Ready to Deploy, or Deployed.
78Key createdGenerated when new key was created for the Data Element.
80Policy deploy failedGenerated when a policy failed to be deployed.
83Token deploy failedGenerated when the token failed to be deployed.
84Token deployed successfullyGenerated when the token deployed successfully.
85Data Element Key(s) exportedGenerated when export keys API executes successfully. Lists each Data Element that was successfully exported.
86Policy deploy warningGenerated when the Policy deploy operation fails.
100Password changedGenerated when the password of the admin user was changed.
101Data store createdGenerated when a new data store was created.
102Data store updatedGenerated when a new data store was updated.
103Data store deletedGenerated when a data store was deleted.
107Mask createdGenerated when a new mask was created.
108Mask deletedGenerated when any mask was deleted.
109Security coordinate deletedGenerated when an existing security coordinate was deleted.
110Security coordinate createdGenerated when a new security coordinate is created.
111Role createdGenerated when a new role is created in Policy management in ESA.
112Role deletedGenerated when any role was deleted from Policy management in ESA.
113Member source createdGenerated when a new external source is created in Policy management in ESA.
114Member source updatedGenerated when a new member source is updated in Policy management in ESA.
115Member source deletedGenerated when any external source was deleted from Policy management in ESA.
116All roles resolvedGenerated when the members in the automatic roles are synchronized.
117Role resolvedGenerated when it has fetched all members from a certain role into the policy.
118Role group member resolvedGenerated when it has fetched all group members from a role into the policy.
119Trusted application createdGenerated when a new trusted application is created in Policy management in ESA.
120Trusted application deletedGenerated when a new trusted application is deleted in Policy management in ESA.
121Trusted application updatedGenerated when a new trusted application is updated in Policy management in ESA.
126Mask updatedGenerated when a mask is updated in Policy management in ESA.
127Role updatedGenerated when a role is updated in Policy management in ESA.
129Node registeredGenerated when a node is registered with ESA.
130Node updatedGenerated when a node is updated.
131Node unregisteredGenerated when a node is not registered with ESA.
141Alphabet createdGenerated when an alphabet is created.
142Alphabet deletedGenerated when an alphabet is deleted.
149Data element key updatedGenerated when a data element with a key is updated in Policy management in ESA.
150Data element key createdGenerated when a new data element with a key is created in Policy management in ESA.
151Data element key deletedGenerated when a data element (and its key) was deleted from Policy management in ESA.
152Too many keys createdGenerated when the number of data element key IDs has reached its maximum.
153License expire warningGenerated once per day and upon HubController restart when less than 30 days are left before license expiration.
154License has expiredGenerated when the license becomes expired.
155License is invalidGenerated when the license becomes invalid.
156Policy is compromisedGenerated when integrity of pepserver.db has been compromised.
157Failed to import some usersGenerated when users having names longer than 255 characters were not fetched from an external source.
158Policy successfully importedGenerated when the policy is successfully retrieved from the pepserver.imp file (configured in pepserver.cfg), imported and decrypted.
159Failed to import policyGenerated when the policy fails to be imported from the pepserver.imp file (configured in pepserver.cfg).
170Data store key exportedGenerated when the Data store key is exported.
171Key updatedGenerated when the key rotation is successful.
172Key deletedGenerated when the key is deleted.
173Datastore key has expiredGenerated when the Data store key expires.
174Datastore key expire warningGenerated when the Data store key is about to expire.
176Datastore key rotatedGenerated when the Data store key is rotated.
177Master key has expiredGenerated when the Master key expires.
178Master key expire warningGenerated when the Master key is about to expire.
179Master key rotatedGenerated when the Master key is rotated.
180New HSM ConfiguredGenerated when a new HSM configuration is created.
181Repository key has expired.Generated when the Repository Key has expired.
182Repository key expiry warning.Generated when the Repository Key is on the verge of expiry. The warning message mentions the number of days left for the Repository Key expiry.
183Repository key rotated.Generated when the Repository Key has been rotated.
184Metering createdGenerated when metering data is created.
185Metering updatedGenerated when metering data is updated.
186Metering deletedGenerated when metering data is deleted.
187Integrity createdGenerated when an integrity check is created.
188Integrity updatedGenerated when the integrity check is updated.
189Integrity deletedGenerated when an integrity check is deleted.
195Signing key has expiredGenerated when the signing key has expired.
196Signing key expire warningGenerated for the signing key expiry warning.
197Signing key rotatedGenerated when the signing key is rotated.
198Signing key exportedGenerated when the signing key is exported.
199Case sensitive data element createdGenerated when a case sensitive data element is created.
210Data Element key has expiredGenerated when the data element key has expired.
211Data Element key expire warningGenerated for the data element key expiry warning.
212Conflicting policy users foundGenerated when conflicting policy users are found.
213Key state changedGenerated when the key state is changed.
220Data Element deprecatedGenerated when the data element is deprecated.

Last modified : February 02, 2026