Protect4S - VM User Guide
  • Protect4S - VM User Guide
  • Introduction
    • Quick setup
    • Support
    • Protect4S VM place in SAP system landscape
  • Pre-conditions and installation
    • Supported operating system and database types
    • Software version requirements
    • Recommendations
    • Heterogeneous database connections
  • Protect4S VM Software Installation
    • Add-On Installation, import support packages and upgrade
    • Installation post-processing
  • Create Protect4S VM users and roles
    • Distribution of satellite roles
    • satellite system ABAP RFC user using wizard
    • satellite system ABAP RFC user MANUAL SETUP
    • satellite system JAVA user
    • satellite system database user
    • satellite system operating system user
    • Operating system user other than <sid>adm
    • Satellite system BusinessObjects user
  • Check and set Application settings
  • Protect4S VM Menu
  • Execute the Quick setup
    • Company
    • Systems
      • Creating an ABAP system
      • Creating a JAVA system
      • Creating a BusinessObjects BI system
      • Creating a HANA standalone system
      • Creating a SAP Web Dispatcher system
      • Creating a SAProuter system
      • Creating a SAP Cloud Connector system
      • SAPControl security settings
  • Create a project
    • New project
    • New Scan
  • Check Template
  • Contact persons and Scan subscription
    • Contact persons
    • Scan subscriptions
  • Reports
    • Scan result
    • Scan results information
    • System tab
    • Company tab
    • Scan statistics tab
    • Check overview
    • Risk history
    • Scan statistics
    • Scan export
    • Mitigation report
    • Scan comparison
    • Management overview
    • Connection map
  • Mitigation of Vulnerabilities
    • Mitigation menu
  • Check exemptions
  • SIEM Interface
  • Integration
    • Incident Management
  • Information and support
    • Welcome menu
    • Product information
    • Check information
    • Change log
    • User Guide
    • Report a software defect
    • Feature request
  • Deinstallation
  • Appendix A: Troubleshooting Satellite System connection issues
    • SAPControl connections
    • Database connection
    • JAVA connection
    • HTTPS certificate errors
  • Appendix B: Installation database libraries
    • IBM DB2
    • MSSQL
    • MaxDB
    • Oracle
    • SAP Sybase
    • SAP HANA
  • Appendix C: satellite system Communication Ports
  • Appendix D: Protect4S VM SICF Services
  • Appendix E: using a server group
  • Appendix F System context
  • Appendix G DNS resolving
  • Appendix H Dump in Scan subsciptions
  • Appendix I HTTPURLLOC table
  • Appendix J - Risk Matrix
  • Appendix K - Short dump function module "PFL_GET_SINGLE_PARAMETER" not found
  • FAQs
    • General
    • Installation
    • Configuration
    • Projects and scans
  • Contact us
Powered by GitBook
On this page

Was this helpful?

Check exemptions

PreviousMitigation menuNextSIEM Interface

Last updated 2 years ago

Was this helpful?

In some cases, you would not want to see a particular vulnerability finding in the output of a scan. Possible reasons could be:

  • that the vulnerability is not applicable to a specific situation.

  • that the risk has been diverted or mitigated by other measures already implemented.

  • that the risk in the process of being mitigated or remediated.

  • or that there are other valid reasons why a specific risk would be acceptable.

For these cases you can create an check exemption. This functionality can be accessed from the Masterdata part of the menu:

It can also be accessed from within a Scan overview:

or from within the check selection of a scan within a project:

In the exemption configuration application, you can exclude checks for a specific period.

It is also possible to do so for different scopes like a specific scan, a specific project or for example, for all scans. In addition, you can document the reason why this check has been exempted, who approved it and provide references to other documentation.

After an exemption has been created for a specific check, it will no longer show up in the Scan export nor participate in the Risk score for an SAP system. You can make them visible in the Scan overview were they show up in blue after selecting a special flag:

Exemptions will also appear in the Scan comparison report:

Check excemptions
Check exemption access for a specific vulnerability inside a Scan
Check excemption access for a specific check inside a scan within a Project
Example of an newly created Excemption
Check exemption displayed in Scan overview
Exemption shown in Scan comparison report