You can review violations when you create or update a Kubernetes hardening policy and you can reduce the number of violations by creating rule exceptions. Creating exceptions omits workloads from the rule action.
Important:
Carbon Black recommends that you only create exceptions to exclude specific workloads that exhibit known behaviors. Remediate as many violations as possible before considering an exception.
Tip: You can deactivate a rule if it triggers too many violations until the issues in your environment are resolved. To exclude the rule from the policy, toggle the state of the rule to
Off
.