Rules define potential conflicts on an attribute basis within an audit policy. An audit policy can contain hundreds of rules that reference a wide range of resources. During rule evaluation, the rule has access to user account data from one or more resources. The audit policy may restrict which resources are available to the rule.
It is possible to have a rule that checks only a single attribute on a single resource, or a rule that checks multiple attributes on multiple resources.