I think the granularity of our console is good but at the same time, it can be a bit confuse where should we configure an exception as there are multiple places to configure. Regarding just SBA blades there are up to 3 places where we can configure exceptions:
- SBA Forensics, Remediation and Anti-Ransomware. There could be exceptions for Certificates, Files, Folders, MD5 Hashes, SHA1 Hashes and File Extensions.
- SBA Anti-Bot. There could be exceptions for Processes, URLs, Domains, Protection Names, IP Ranges.
- SBA TE and TX. There could be exceptions for Folders, Domains and SHA1.
If we add Anti-Malware blade, we could also make exceptions for Files, Folders and Extensions.
I think we could simplify this in some ways, couldn't we?