As you know, every rule has an exception, and this is applicable to compliance as well. You create a rule for disabling the print spooler service on all servers, and then you have print servers that need this service running. Now, we can't disable this service if we know this is a known and accepted deviation, and we don't want our compliance score to get a hit because of this. What we can do is add an exception so that this will not create issues when checking compliance.
Our organization has a policy to disable unwanted services on servers, and the print spooler is considered an unwanted service, so it must be disabled on all the servers. Of course, the exceptions are the print servers. We will create an exception for the print server machine group to be excused from this mandate.
We will need the required rules created in VCM along with a machine group that includes all the print servers.