Disabling a rule will prevent notifications of violations of this specific rule on future resources. It can be disabled across all cloud accounts or on an individual account basis.
Disable a Rule
1.) From the compliance problems page ensure that the problem you want to place a bulk policy exception on is expanded (in the example below this is "Storage Container containing Activity Logs must be encrypted with 'BYOK')
2.) Click "More information about this rule"
3.) Click "Disable Rule"
4a.) Select "Disable this rule across all accounts in my company" or select the specific accounts for which you want to disable the rule.
4b.) Click "Disable This Rule for These Accounts" Button
Note:
- You won't see compliance drift for changes to resources violating this rule
- Existing problems for resources violating this rule will be marked as "fixed" with eight hours
- Resources won't show as applying to this rule
- Resources won't show as applying to any policy associated with this rule unless the resource also applies to another rule associated with that policy
Enable a Rule
1.) From either compliance screen select the "Disabled Rules" icon
2.) Click "View" from the list of currently disabled rules that you want to enable.
3.) Click "Disable Rule"
4a.) Uncheck the box(es) that you want to enable the rule for again.
4b.) Click "Disable This Rule for These Accounts"