hello,
you could do a report using "Domain" as a filter which contains list of your whitelisted domain then you will have subset of your incident about these domains.
After that it depends how incident are managed. Usually i always have a specific status to tag incident which are linked to an exception request but if you dont have this, it may be difficult to knwo exactly who was the requester (may be the one who generate last incident linked to these domain). You may also look at the note in these incident, may be there is some information about exception request.
Regards