Skip to main content

Set violation vulnerability policies

Violation policies mark a vulnerability as being in violation of a policy. When this policy is triggered, the vulnerability is displayed in red text in the Vulnerabilities list.

When you add a policy, it is turned on, by default. You can turn a policy off or on in the Enabled column in the Violation tab.

Before you begin
  • An Organization Rules Admin or Organization Admin role is required.

  1. From the user menu, select Policy management.

  2. Select Vulnerability management.

  3. Select the Violation tab.

  4. To add a policy:

    1. Select Add policy.

    2. In Name, enter a name for the policy.

    3. In Vulnerability rules, select the vulnerability severity levels or Assess rules that you want to associate with the policy.

    4. In Applications, select the application importance levels or applications that you want to associate with the policy.

    5. In Environment, select the environments for the servers hosting the applications where you want to apply the policy.

    6. Under Trigger, select Flag any existing vulnerability after and select the number of days.

    7. Select Save.

  5. To update a policy:

    1. On the Violations tab, select a policy.

    2. Change any of the policy values.

    3. Select Update.