Quick Start Guide: Applying an Exception in Dashboard

This Quick Start Guide will explain how to add exceptions to reports in CIS-CAT Pro Dashboard v3.0.0+

Instructions

Navigate to the report by selecting “Reports” → “Assessment Results List”
Select the report that needs exceptions added
Navigate to the rule to except within the Test Results Report and select Add Exception
Enter the desired criteria:

**Start date must be on or before the Assessment Date for the exception to apply** (Assessment Date can be seen in step 2’s screenshot)
Rationale is required. The rationale should clearly explain and justify the reason for the exception, and will be used during the automated approval workflow process.
To apply to all target systems for this CIS Benchmark version, select the Global checkbox. Otherwise, the exception will apply to only this target system.
Enter Tags to apply this exception to all targets associated with entered tag. If Global is checked on, entries in Tags will be ignored as this exception will be applied to all targets for this CIS Benchmark version

Review the exception and select Approve or Reject
Please note: if the exception is rejected, or you did not intend to reject it, you must recreate the exception
Exceptions can be viewed in the following ways:

Exported HTML reports - now reflect excepted CIS Benchmark recommendations as “Excepted”. Scores are adjusted on the report to coincide with screen view scores.
Exception List on Test Results - within a test result, navigate to the exception tab
Target System Configuration Assessment Exceptions List - on each target systems view page in Configuration Assessments tab, note list of exceptions applicable to selected target.
Configuration Assessment Exception Search - Navigate to Reports menu
Navigate back to the rule and you can now see that exceptions exist.
Test Results Report - Instead of pass or fail, the rule will list “Exceptions exist”

For more information on Exceptions see the official documentation