When creating exclude conditions, either server specific or domain specific, it would be extremely useful to provide granularity based on the Action Type.

Example: I have a a file or directory that should not be written to. I don't need a report for every time a Write Deny is logged. Instead, I need to report on when a Write is successful. In this case, I'd want a condition of:

Exclude Local Path is equal to "C:\Path\to\monitor" AND action type is "Write"

It appears you have the ability to do one or the other but not both in a single condition statement.