The Security Dashboard features the ability to Exclude objects from a future snapshot - this can be useful when the object is violating an AIP Quality Rule, but is irrelevant:
Now click the Add button and select the Schedule Exclusion of the violations option:
Note that you can add multiple violations to the Exclusion list in one go:
If there are many violations, a Pagination (table footer) will be displayed (this is to improve the performance of the display). At the bottom of the violations list, there are improved options for pagination of items:
The SHOWING option allows you to view violations in groups of 20, 100 or all violations. You can choose to display more using the various options (+10, +100 etc.).
- Depending on which list of exclusions you are working in, the following will then occur:
- Active Exclusions > The selected violations will be greyed out in the Active Exclusions list and will also appear in the Scheduled Exclusions as scheduled to remove - the violation will be taken into account once again in the next full snapshot or consolidation action and will then move out of the Exclusion list entirely.
- Scheduled Exclusions > The selected violations will be removed from the Scheduled Exclusions list and will be available for re-selection in the future.
Via the Risk Investigation, Application Investigation, Transaction Investigation and Advanced Search views
In ≥ 2.10 you can remove violations from the Exclusion list (only from the Scheduled Exclusion list) from the following locations:
To do so, find the violations or violations you want to remove in any of the views listed above and then select the violation (or use the multi checkbox to select all violations) you want to remove:
Then click the Manage button and select the Remove from Scheduled list option. All selected violations will be removed from the Scheduled Exclusions list and will be available for re-selection in the future:
Updating comments for violations (objects) that are already present in the Exclusion list