Unauthorized Change Rule only detects Added access from the outside RSA, Customer needs report which should show both added as well as removed access from the outside RSA .
I've moved your question to the RSA Identity Governance & Lifecycle space, where it will be seen by the product's support engineers, other customers and partners. Please bookmark this page and use it when you have product-specific questions.
Alternatively, from the RSA Customer Support page, click on Ask A Question on the blue navigation bar and choose Ask A Product Related Question. From there, scroll to RSA Identity Governance & Lifecycle and click Ask A Question. That way your question will appear in the correct space.
Retrieving data ...