Discuss with expertTry it for free
© 2026 Direct Cursus Technology L.L.C.

Working with a list of exceptions

Written by
Updated at May 4, 2026

Note

This feature is in the Preview stage. To get access, contact tech support or your account manager.

This section describes how to view a list of exceptions, apply filters, and manage exception deployment.

Getting started

The Yandex SIEM section will appear in the Cloud Center interface as a Security Deck module after the access request is approved.

You need the ycem.editor role to use the service.

Viewing a list of exceptions

To view a list of exceptions:

  1. Go to Security Deck.
  2. In the left-hand panel, select Yandex SIEM.
  3. Navigate to Exceptions.

A list of all available exceptions with their statuses and deployment statuses will open.

Filtering exceptions

To filter exceptions based on the parameters you need:

  1. Go to Security Deck.
  2. In the left-hand panel, select Yandex SIEM.
  3. Navigate to Exceptions.
  4. Use filters above the list:
    • Status: Filter exceptions by status: Healthy, Unhealthy, or Inactive.
    • Bound rule: Filter by the correlation rule the exception is bound to.

The list refreshes to show only exceptions that match the selected criteria.

Marking an exception for deployment

To apply changes to an exception, mark it for deployment:

  1. Go to Security Deck.
  2. In the left-hand panel, select Yandex SIEM.
  3. Navigate to Exceptions.
  4. In the exception row, click and select Mark for deployment.

The exception deployment status will switch to Will be deployed. Once deployment is complete, the status will switch to Deployed.

Cancelling exception deployment

To cancel a scheduled exception deployment:

  1. Go to Security Deck.
  2. In the left-hand panel, select Yandex SIEM.
  3. Navigate to Exceptions.
  4. In the exception row, click and select Do not deploy.

The exception deployment status will switch back to Changed.

See also

Previous
Managing exceptions
Next
About Yandex SIEM