You can’t always prevent accidental changes made by administrators that result in a compromise of your security profile. And, on some very rare occasions, there may even be malicious changes by administrators.
In these cases, it’s an advantage to have the ability to review logs that assist in the forensic investigation of the compromising alterations so you can quickly undo those them and return to the original security profile.
Take, for example, an admin-initiated change to switch “Off” the Block External Communication (BEC) setting on your Webex Teams settings. The majority of organizations choose to have BEC switched “On” to prevent leakage of data to users outside their organization through Webex Teams. The Administration Audit Log feature provides this critical data by logging all administrative actions. It even allows filtered searches based on various criteria including actions by specific administrators. In this instance, after a quick Administration Audit Log search, the BEC setting is re-activated—and another layer of security has helped enforce policy.
