Allow for suppression for vulnerabilities for user/group on M365. For instance, it is not feasible to enable MFA for directory sync accounts. But I would not want the MFA remediation to be completely suppressed if other accounts that should have MFA, need to have this remediated.