There are specific request URIs or paths that we need to exclude from evaluation by particular rule IDs in Cloud Armor. We tried adding request field exclusions but it is not working as we are still getting 403 Forbidden error even after doing so.

We would like to check if there are any other configuration that needs to be done for this to work properly. Or are there any other possible ways to disable signatures in a particular preconfigured WAF rule for specific request URIs or paths only? 

Thanks!

@dchiesa1