Forum Discussion
Exclude Devices from Secure Score
I have a scenario where DevOps devices are spun up in the environment and onboarded to Defender then after very short periods of time never used again. Leaving thousands of devices onboarded which are not in use/live anymore.
With the devices being onboarded to DFE this affects the Secure Score significantly, the hosts use a specific host name prefix and we were looking to see if there was a way to have Secure Score exclude these devices as they greatly impact the overall %.
2 Replies
DFE provides an "Exclude" option and this can be applied to multiple devices using the filters. Once excluded, these devices no longer affect the Secure Score and are hidden from vulnerability Management dashboard as well
Thanks for the response.
I have just tried and unfortunately, I can only do up to 5 devices at a time in Device Inventory. I need to exclude all future hosts with a hostname prefix and current ones, there are several thousands of devices needing excluded as new ones are frequently spun up and torn down during testing.
All these devices are in a Defender Dynamic Device Group which is populated so is there a way to exclude with this device group?
