This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
Soren_Kristense
Contributor
‎2018-07-03 07:18 AM

Exclude a policyset from Compliance Blade

Hi

Is it possible to exclude a policy set from the compliance blade, it is the default VSX cluster policy set I want to exclude from compliance blade.

8 Replies
PhoneBoy
Admin
Admin
‎2018-07-03 06:30 PM

Do you want to exclude the policy installed to VS0?

You would add VS0 here:


0 Kudos
Soren_Kristense
Contributor
‎2018-07-04 06:42 AM
In response to PhoneBoy

Yes i did exclude VS0, but the policy set for VS0 is still listed in the URL filtering rules and Application Control rules.

0 Kudos
PhoneBoy
Admin
Admin
‎2018-07-04 09:43 AM
In response to Soren_Kristense

Will look into this.

Tomer Sole‌ any thoughts?

0 Kudos
PhoneBoy
Admin
Admin
‎2018-07-05 12:18 PM

You have to disable the relevant Best Practices for VS0.

Find the appropriate Best Practices and uncheck the VS0 object.

An example from Demo Mode (admittedly not using VSX objects, but same concept applies).

0 Kudos
Soren_Kristense
Contributor
‎2018-08-07 03:51 AM
In response to PhoneBoy

It is the policy set that is testet, and not the gateway where it is installed on.

0 Kudos
PhoneBoy
Admin
Admin
‎2018-08-13 07:21 PM
In response to Soren_Kristense

Can't you just uncheck all the gateways where this option is irrelevant?

Soren_Kristense
Contributor
‎2018-08-30 05:13 AM
In response to PhoneBoy

The option is not connected to ag Gateway only to a Rulebase

0 Kudos
BAlexiev
Explorer
‎2024-10-16 04:19 AM
In response to Soren_Kristense

Hi! I had the same question about excluding a policy. After adding a SG to Inactive Gateways in the Inactive Objects menu (button), all the requirements will not be checked against this gateway, so the Compliance results will change to include only the applicable policy/policies for the gateways that are active.

I suppose it is good that we still have the requirements listed for the other policies and their rules, so we can prepare a policy and have it checked before we apply it to a SG.

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    CheckMates Events
    Top