Request an exception using GRC: Policy and Compliance Management in the IT Remediation Workspace

  • Rversion finale: Australia
  • Mis à jour 12 mars 2026
  • 1 minute de lecture

    • Request a policy exception for the host vulnerable item (VIT), application vulnerable item (AVIT), container vulnerable item (CVIT) or remediation task (VUL, AVUL, CVUL, or CRG) from the IT Remediation Workspace.

    Avant de commencer

    Role required:
    • sn_vul.remediation_owner for host vulnerable items (VITs)
    • sn_vul.app_security_champion for application vulnerable items (AVITs)
    • sn_vul_container.remediation_owner for container vulnerable items (CVITs)
    • sn_vulc.remediation_owner for configuration test results (CTRs)

    Pourquoi et quand exécuter cette tâche

    Remarque :
    Starting with v19.0 of Vulnerability Response, the following terms have been renamed:
    Tableau 1. Changes in terminology
    Terminology prior to v19.0 Terminology v19.0 onwards
    Test Result Groups Remediation Tasks
    Configuration Issues Configuration Test Results
    Policy Test group

    Procédure

    1. Navigate to Workspaces > IT Remediation Workspace.
    2. In the application navigator, select the List icon (List icon.).
    3. On the List page, under Host vulnerable items, Application vulnerable items, Container vulnerable items, or Remediation tasks (VUL, AVUL, CVUL, or CRG), select the record that you want to request an exception for.
      The record that you select must be in the Open, Under investigation, or Awaiting implementation state.
    4. Select the Request Exception button.
    5. On the form, fill in the fields.
      For more information on the form fields, see Request exception form fields for policy exceptions.
    6. Select Request Exception.
    7. On the Take Questionnaire modal, answer the questions to provide additional information about your request and select Submit.
      Remarque :
      The Take Questionnaire modal appears only when the questionnaire details are added to the respective integration registry.
      A message appears that your request is successfully submitted for approval.

      For more information on the Policy Exception Integration and the hand-off between the remediation owner and the compliance manager, see Policy and Compliance Management optional setup.