diff --git a/templates/ansible_vars_goss.yml.j2 b/templates/ansible_vars_goss.yml.j2
index 6654add..f5a7921 100644
--- a/templates/ansible_vars_goss.yml.j2
+++ b/templates/ansible_vars_goss.yml.j2
@@ -1,3 +1,5 @@
+
+## This file is managed by Ansible, YOUR CHANGED WILL BE LOST!
 ## metadata for benchmark
 
 ## metadata for Audit benchmark
diff --git a/templates/audit/99_auditd.rules.j2 b/templates/audit/99_auditd.rules.j2
index 7abe895..2d270cc 100644
--- a/templates/audit/99_auditd.rules.j2
+++ b/templates/audit/99_auditd.rules.j2
@@ -1,3 +1,5 @@
+## This file is managed by Ansible, YOUR CHANGED WILL BE LOST!
+
 # This template will set all of the auditd configurations via a handler in the role in one task instead of individually
 {% if rhel9cis_rule_4_1_3_1 %}
 -w /etc/sudoers -p wa -k scope
diff --git a/templates/etc/chrony.conf.j2 b/templates/etc/chrony.conf.j2
index 6513faa..54c1b6c 100644
--- a/templates/etc/chrony.conf.j2
+++ b/templates/etc/chrony.conf.j2
@@ -1,3 +1,5 @@
+## This file is managed by Ansible, YOUR CHANGED WILL BE LOST!
+
 # This the default chrony.conf file for the Debian chrony package.  After
 # editing this file use the command 'invoke-rc.d chrony restart' to make
 # your changes take effect.  John Hasler <jhasler@debian.org> 1998-2008
diff --git a/templates/etc/modprobe.d/modprobe.conf.j2 b/templates/etc/modprobe.d/modprobe.conf.j2
index 1a1a48d..a4d9d3d 100644
--- a/templates/etc/modprobe.d/modprobe.conf.j2
+++ b/templates/etc/modprobe.d/modprobe.conf.j2
@@ -1,5 +1,6 @@
 # Disable usage of protocol {{ item }}
 # Set by ansible {{ benchmark }} remediation role
 # https://github.com/ansible-lockdown
+## This file is managed by Ansible, YOUR CHANGED WILL BE LOST!
 
 install {{ item }} /bin/true
\ No newline at end of file
diff --git a/templates/etc/sysctl.d/60-disable_ipv6.conf.j2 b/templates/etc/sysctl.d/60-disable_ipv6.conf.j2
index 34ee10c..b172b97 100644
--- a/templates/etc/sysctl.d/60-disable_ipv6.conf.j2
+++ b/templates/etc/sysctl.d/60-disable_ipv6.conf.j2
@@ -1,4 +1,4 @@
-# Setting added via ansible CIS remediation playbook
+## This file is managed by Ansible, YOUR CHANGED WILL BE LOST!
 
 # IPv6 disable
 {% if rhel9cis_rule_3_1_1 and rhel9cis_ipv6_required %}
diff --git a/templates/etc/sysctl.d/60-kernel_sysctl.conf.j2 b/templates/etc/sysctl.d/60-kernel_sysctl.conf.j2
index cbfffed..bf8e858 100644
--- a/templates/etc/sysctl.d/60-kernel_sysctl.conf.j2
+++ b/templates/etc/sysctl.d/60-kernel_sysctl.conf.j2
@@ -1,4 +1,4 @@
-# Setting added via ansible CIS remediation playbook
+## This file is managed by Ansible, YOUR CHANGED WILL BE LOST!
 
 
 {% if rhel9cis_rule_1_5_3 %}
diff --git a/templates/etc/sysctl.d/60-netipv4_sysctl.conf.j2 b/templates/etc/sysctl.d/60-netipv4_sysctl.conf.j2
index 308b914..4b2dabc 100644
--- a/templates/etc/sysctl.d/60-netipv4_sysctl.conf.j2
+++ b/templates/etc/sysctl.d/60-netipv4_sysctl.conf.j2
@@ -1,4 +1,4 @@
-# Setting added via ansible CIS remediation playbook
+## This file is managed by Ansible, YOUR CHANGED WILL BE LOST!
 
 # IPv4 Network sysctl
 {% if rhel9cis_rule_3_2_1 %}
diff --git a/templates/etc/sysctl.d/60-netipv6_sysctl.conf.j2 b/templates/etc/sysctl.d/60-netipv6_sysctl.conf.j2
index 0b23c55..895f23e 100644
--- a/templates/etc/sysctl.d/60-netipv6_sysctl.conf.j2
+++ b/templates/etc/sysctl.d/60-netipv6_sysctl.conf.j2
@@ -1,4 +1,4 @@
-# Setting added via ansible CIS remediation playbook
+## This file is managed by Ansible, YOUR CHANGED WILL BE LOST!
 
 # IPv6 Network sysctl
 {% if rhel9cis_ipv6_required %}
diff --git a/templates/etc/systemd/system/tmp.mount.j2 b/templates/etc/systemd/system/tmp.mount.j2
index 2a97a56..f2c4fe2 100644
--- a/templates/etc/systemd/system/tmp.mount.j2
+++ b/templates/etc/systemd/system/tmp.mount.j2
@@ -7,6 +7,8 @@
 #  the Free Software Foundation; either version 2.1 of the License, or
 #  (at your option) any later version.
 
+## This file is managed by Ansible, YOUR CHANGED WILL BE LOST!
+
 [Unit]
 Description=Temporary Directory (/tmp)
 Documentation=man:hier(7)