Request an extension for an exception rule in Configuration Compliance

  • Release version: Zurich
  • Updated July 31, 2025
  • 1 minute to read

    • Request an extension for a deferred exception rule before it reaches its deferred until due date. As a remediation owner, you’re no longer required to wait until the deferred due date to make this request.

    Before you begin

    Role required: sn_vul.exception_approver

    About this task

    You can also request an extension from the Vulnerability Response Workspaces. For more information, see Request an extension for a deferred vulnerable item in the Vulnerability Manager workspace.

    Note:
    Starting with v14.9 of Configuration Compliance, the following terms have been renamed:
    Table 1. Changes in terminology
    Terminology prior to v14.9 Terminology v14.9 onwards
    Test Result Group Remediation Task
    Group Rules Remediation Task Rules
    Policy Test group

    Procedure

    1. Navigate to All > Configuration Compliance > Exception Rules.
    2. Select an approved exception rule.
    3. Select Request Extension.
    4. Fill in the fields on the form, as appropriate.
      Field Description
      Extend Until

      Select the date until when the exception rule must be extended.
      Reason Enter the reason for deferring the exception rule.
      Choices include:
      • Risk accepted
      • Awaiting maintenance window
      • Fix unavailable
      • Mitigating control in place
      • Other
      Additional information Enter any other relevant information.
    5. Select Request Approval.
      On approval of the request, the Deferred until, Reason and Additional information fields get updated on the exception rule and the associated remediation tasks. An email is also triggered on submission of the request and subsequent action by the approver.
      Note:
      • The request goes through two levels of approval.
      • If a deferred exception rule is extended again, the extend deferral count increases in the backend.