Skip to Content


 

SCAP job exceptions

The Exceptions tab displays the list of rules that are contained in the benchmark but declared as exceptions. A rule exception is a rule for which it does not matter if it succeeds or fails on the targets, as its scan results are not included in the global compliance.

The table shows the following information about the exceptions:

Parameter

Description

Rule Name

This column displays the list of rule names that were selected as exceptions for this SCAP job.

Comments

This field displays any comments concerning the rule exception, that explains for example why it is considered an exception or any other pertinent information.

Expiration Date

This column displays the date and time at which the exception expires. From this time onwards the result of the rule is no longer ignored but included as part of the global compliance.

Adding SCAP rule exceptions

A rule exception is a rule for which it does not matter if it succeeds or fails on the targets, as its scan results are not included in the global compliance.

Some rules that are included in the benchmarks can be specified as exceptions, because, for example, they are not applicable to a specific operating systems, or a specific rule currently is not applicable for your internal regulations, and so on.

These exceptions can be modified at any moment and can also have a deadline. This means that for example a rule is considered an exception until December 31st, because until then a specific requirement is not applied in your organization, but from the 1st of January onwards it will be. Once the expiration date is reached, the exception is automatically removed and the rule result included in the global compliance.

Warning

Note

 Be aware that this does not impact any scans and reports already run before the expiration date, these will remain as they are.

To specify a rule exception proceed as follows: 

  1. Click Edit > Add SCAP Rule Exception.
    The Select an SCAP Rule dialog box appears on the screen.
  2. Select the rule to specify as exception.
    You can select more than one rule at a time by holding the CTRL key while selecting.
  3. optional: Click the calendar icon if the rule exception is to expire at a specific date. If the exception is unlimited do not modify this box.
  4. Click OK to add it to the list of exceptions and close the window.

 

Tip: For faster searching, add an asterisk to the end of your partial query. Example: cert*

BMC Client Management 20.08