Edit a custom exception

Procedure

1. Go to XDR Threat Investigation → Detection Model Management and click the Exceptions tab.
2. Click for the exception you want to modify.
3. Edit the settings you want to modify.
   You can change the following settings categories of custom exceptions:

   • General Settings

     Note Context menu exceptions do not have names.

   • Targets
   • Event source
   • Exception type

     Important If you change Exception type from Filter-based exception to Global exception, you cannot revert this exception back to filter-based.

   • Match criteria
4. Click Save. Your changes might take a few minutes to take effect.