---
title: "nctl exceptions audit"
diataxis: reference
applies_to:
  product: "nctl"
audience: ["developer","platform-engineer"]
last_updated: 2026-03-07
url: https://docs.nirmata.io/docs/nctl/commands/nctl_exceptions_audit/
---

## nctl exceptions audit

Audit Kyverno PolicyException resources

```bash
nctl exceptions audit [flags]
```

### Examples

```bash
  # Audit all policy exceptions
  nctl exceptions audit

  # Show only exceptions older than 90 days
  nctl exceptions audit --older-than 90

  # Show only expired exceptions
  nctl exceptions audit --expired

  # Filter by namespace
  nctl exceptions audit --namespace default

  # Output as JSON
  nctl exceptions audit -o json
```

### Options

```text
      --expired               Only show exceptions past their expiry date
  -h, --help                  help for audit
      --kube-context string   the kube context from configured kubeconfig. Default is the current or sole context
      --kubeconfig string     kubeconfig path (defaults to $HOME/.kube/kubeconfig)
      --namespace string      Filter by namespace (default: all namespaces)
      --older-than int        Only show exceptions older than N days
  -o, --output string         Output format (text, json, yaml, openreport) (default "text")
```text

### Options inherited from parent commands

```text
  -v, --v Level   number for the log level verbosity
```

### SEE ALSO

* [nctl exceptions](nctl_exceptions.md)	 - Manage Kyverno PolicyExceptions