You can exclude specific findings from appearing in the results of assessments, for both manually triggered compliance assessments, and continuous compliance assessments.

Using exclusions, you can declutter the findings lists by removing findings that are not interesting to you. The excluded findings will also not be included in the calculation of the overall assessment results, or the results for a specific rule. Excluded findings will also not be sent as notification messages (by email, SNS, etc) to external systems.

Some typical cases to use exclusions include:

  • exclude findings from irrelevant rules, for a specific cloud account or for all cloud accounts, for example when using predefined Dome9 rulesets, when some rules are not applicable to your environment
  • replace a rule that requires customization
  • stop generating findings for a specific entity, if a rule is irrelevant for the entity

See also