Views:

Edit the settings of a custom exception.

Procedure

  1. Go to XDR Threat InvestigationDetection Model Management and click the Exceptions tab.
  2. Click edit_icon=GUID-1F1D1164-5310-4D6D-ACD0-6049C86960AF.png for the exception you want to modify.
  3. Edit the settings you want to modify.
    You can change the following settings categories of custom exceptions:
    • General Settings
      Note
      Note
      Context menu exceptions do not have names.
    • Targets
    • Event source
    • Exception type
      Important
      Important
      If you change Exception type from Filter-based exception to Global exception, you cannot revert this exception back to filter-based.
    • Match criteria
  4. Click Save. Your changes might take a few minutes to take effect.