How to Set an Exclusion Policy for Vulnerability in SecPod Saner CVEM

Modified on Mon, 26 May at 3:41 PM

Purpose:
This article provides step-by-step instructions to configure exclusion policies in SecPod Saner CVEM, allowing you to exclude specific vulnerabilities.


Steps to Set an Exclusion Policy:

Step 1: Log into the Saner CVEM Console

Access the Saner CVEM web interface using your credentials.


Step 2: Navigate to Exclusion Policies

  • From the module Select VM( Vulnerability Management)

  • Select Exclusion Policies from the available options.


Step 3: Create a New Exclusion Policy

  • Select the asset which needs to be excluded and select Exlude from the drop down



Step 4: Define the Exclusion Criteria

  • Specify whether the exclusion is for Vulnerabilities.

  • Define the criteria for exclusion, such as:

    • Patch IDs or KB numbers

    • Asset groups or specific devices

    • Enter for how many days the Vulnerability should be excluded for.


Step 5 Save and Apply the Policy

  • Review your settings and click Exclude Selected Items to apply the exclusion policy.

  • The policy will now exclude the specified vulnerabilities or patches from scans and remediation tasks.


Additional Notes:

  • Exclusion policies help manage false positives or known issues that are safe to ignore.

  • Use exclusion policies carefully, as they may impact your overall security posture.

  • For complex requirements, consult SecPod support or documentation.


If you need assistance with creating or managing exclusion policies, feel free to reach out to SecPod support at support@secpod.com

Was this article helpful?

That’s Great!

Thank you for your feedback

Sorry! We couldn't be helpful

Thank you for your feedback

Let us know how can we improve this article!

Select at least one of the reasons
CAPTCHA verification is required.

Feedback sent

We appreciate your effort and will try to fix the article