SecurityCustomize SecurityExceptions for Findings

Set Exceptions on Asset Findings

Set exceptions on findings (checks, CVEs, or advisories) on a single asset.

An asset finding exception tells Mondoo to skip or stop scoring a finding on a single asset. Use it when a check or advisory matters for your space overall but doesn't apply to one particular asset, or when you want to defer fixing it until a later date.

For an overview of the four exception types, read Exceptions.

Note: Setting, approving, and removing exceptions all require Editor or Owner access.

Set an exception on an asset's advisories

  1. In the Mondoo App, navigate to the space.

  2. Use Search in the left navigation or the Inventory list to open the asset.

    You can also select a workspace to view a subset of assets.

  3. Open the Findings tab and select the Advisories filter.

    Advisories on an asset's Findings tab

  4. Check the boxes next to the advisories you want to set an exception on.

    Mondoo advisories - set an exception

  5. Select SET EXCEPTION.

    Mondoo exception

  6. Choose the exception type and period, add a justification (used by the approver), then select SAVE EXCEPTION.

The same flow works for checks and CVEs using the Misconfigurations and Vulnerabilities filters.

Approve or reject an exception

An exception's approval flow depends on your space's exception settings. By default, an exception takes effect when it's created and a different team member approves or rejects it as an audit step. Approving keeps the exception. Rejecting removes it.

  1. Open the asset (steps 1–2 above).

  2. Select the Exceptions tab to see every exception on the asset, then select an exception to open its detail.

    Approve or reject an exception on an asset

  3. Select APPROVE or REJECT.

Remove an exception

To remove an exception and re-enable the finding, open the exception (from the Exceptions tab, select it) and choose REJECT. Rejecting an exception removes it and restores the finding's score.

On this page