Exclusions

Exclusions allow you to create rules that automatically ignore individual alerts. This refers to removing or filtering out a part of an existing rule or policy from the detector. For example, excluding a phrase, a specific regex pattern, or another element you don’t want the rule to trigger on. For example, you may have a known false positive that you no longer want to see in your list of open issues. You can create an Exclusion rule to hide them from your future issues and alerts throughout the Tenable AI Exposure interface.

To access the Exclusions page:

1. In the left navigation menu, click Policies.

   The Policies page appears. By default, the Policies tab is selected.

2. Click the Exclusions tab.

   The Exclusions page appears.

   

Here, you can:

• Filter the list:

  1. Above the list, use one or more of the following filters to adjust the data displayed in the list:

     • Detection Rule

     • Rule Type

     • Excluded By

     Tenable AI Exposure updates the list based on your selection.

  2. Click Clear Filters to clear any filters applied to the list.

• Manage the columns in the list:

  1. In the upper-right corner, click the button.

     A menu appears.

  2. Select or deselect columns to show or hide them within the list.

• View the following information about your exclusions:

  • Detection Rule — The type of detection rule associated with the exclusion, for example, Exposed PII Data - Email.

    Tip: For more information about policies and their related detection rules, see Tenable AI Exposure Policies and Detection Rules.

  • Rule Type — The type of rule, for example, Keyword.

  • Exclusion Rule — The keyword or phrase the rule is excluding.

  • Excluded by — The Tenable AI Exposure user who created the rule.

On the Exclusions page, you can also manage your exclusions in the following ways:

• Create an Exclusion

• Edit an Exclusion

• Delete an Exclusion