Drata

Effective policy management in Drata is essential for maintaining audit readiness and smooth compliance workflows. This article outlines common issues customers encounter when creating, editing, publishing, and using policies for compliance.

___________________________________________________________

Policy Creation: “Create” Option Is Missing

Symptoms: You have admin-level access, but the Create option does not appear in the Policy Center.

Cause: An external policy management integration (such as Confluence) is connected to your Drata account. When an external policy manager is enabled, policy creation within Drata is disabled to prevent duplication and version conflicts.

Temporarily disconnect the external policy manager.

Refresh or re-open the Policy Center in Drata.

Confirm that the Create option is now available.

1. Temporarily disconnect the external policy manager.
2. Refresh or re-open the Policy Center in Drata.
3. Confirm that the Create option is now available.

Policy Editing: Guest Administrator Cannot Edit Policies

Symptoms: A Guest Administrator cannot edit a policy, even after access has been granted.

Common Causes: Guest Administrator permissions can take up to one hour to fully apply.

Resolution: Allow up to one hour after assigning Guest Administrator access for permissions to take effect.

Policy Publishing: “Publish” Option Is Missing

Symptoms: A policy has been approved, but you do not see the option to publish it.

Cause: Only the Policy Owner can publish a policy. If you are not the owner, publishing actions are restricted.

Request that ownership be transferred to your account, if needed.

Once ownership is updated, publish the policy.

1. Identify the current policy owner.
2. Request that ownership be transferred to your account, if needed.
3. Once ownership is updated, publish the policy.

Policy Compliance: Policies Do Not Satisfy Controls on Their Own

Publishing a policy does not automatically satisfy audit controls. Policies define expectations, but auditors require evidence that those processes are actively followed.

A relevant policy (for example, a System Access Control Policy).

- Access request and approval records
- Onboarding and offboarding checklists
- Tickets, logs, or activity records

- A relevant policy (for example, a System Access Control Policy).
- Supporting process evidence, such as:
 - Access request and approval records
 - Onboarding and offboarding checklists
 - Tickets, logs, or activity records

How to Satisfy Control Requirements:

Link the relevant policy to the appropriate control.

Upload supporting evidence that demonstrates the policy is being followed in practice.

1. Link the relevant policy to the appropriate control.
2. Upload supporting evidence that demonstrates the policy is being followed in practice.

Most policy-related issues in Drata stem from permissions, ownership, integrations, or the distinction between documentation and operational evidence. By understanding how policies interact with controls, approval workflows, and audit tests, you can resolve issues quickly and maintain consistent audit readiness.

If issues persist or you encounter edge cases, consult the Drata Help Center or contact Drata Support for assistance.

Common Policy Management Issues in Drata (and How to Resolve Them)

Home

Contact Sales

Support

Find answers and get help from Intercom Support and Community Experts

This site employs cookies and other technologies that we and our third party vendors use to monitor and record personal information about you and your interactions with the site (including content viewed, cursor movements, screen recordings, and chat contents) for the purposes described in our Cookie Policy. By continuing to visit our site, you agree to our {websiteTermsLink}, {privacyPolicyLink} and {cookiePolicyLink}.

This site uses cookies and similar technologies ("cookies") as strictly necessary for site operation. We and our partners also would like to set additional cookies to enable site performance analytics, functionality, advertising and social media features. See our {cookiePolicyLink} for details. You can change your cookie preferences in our Cookie Settings.

We use cookies to make our site work and also for analytics and advertising purposes. You can enable or disable optional cookies as desired. See our {cookiePolicyLink} for more details.

Advertising cookies are set by our advertising partners to collect information about your use of the site, our communications, and other online services over time and with different browsers and devices. They use this information to show you ads online that they think will interest you and measure the ads' performance. Social media cookies are set by social media platforms to enable you to share content on those platforms, and are capable of tracking information about your activity across other online services for use as described in their privacy policies.

These cookies enable the website to provide enhanced functionality and personalisation. They may be set by us or by third party providers whose services we have added to our pages. If you do not allow these cookies then some or all of these services may not function properly.

These cookies are necessary for the website to function and cannot be switched off in our systems.

These cookies allow us to count visits and traffic sources so we can measure and improve the performance of our site. They help us to know which pages are the most and least popular and see how visitors move around the site.

You have the right to opt out of the sale of your personal information. See our {cookiePolicyLink} for more details about how we use your data.

Your Privacy Choices

We use cookies to enhance your experience. You can customize your cookie preferences below. See our {cookiePolicyLink} for more details.

Cookie Settings

Link, Press control-option-right-arrow to exit

Empty Help Center

Uh oh. That page doesn’t exist.

Disappointed

Neutral

Smiley

Thinking...

Searching through sources...

Analyzing...

Tickets submitted through the messenger or by a support agent in your conversation will appear here.

Common Policy Management Issues in Drata (and How to Resolve Them)

Policy Creation: “Create” Option Is Missing

Policy Editing: Guest Administrator Cannot Edit Policies

Policy Publishing: “Publish” Option Is Missing

Resolution

Policy Compliance: Policies Do Not Satisfy Controls on Their Own

Summary