API Reference
HomeGitHubSign Up

Creates a new runtime policy with the specified configuration.

post
https://api.armosec.io/api/v1/runtime/policies

Creates a new runtime policy for monitoring and responding to security incidents.

Query params

customerGUID - required. Unique identifier for the customer.

Request object

The request body contains details about the runtime policy to be created.

Request object examples

Create a custom runtime policy for EC2 instances:

{
"name": "EC2 Runtime Monitoring",
"description": "Monitors runtime security for EC2 instances",
"enabled": true,
"ruleSetType": "Custom",
"incidentTypeIDs": [
"I006",
"I007",
"I008",
"I010",
"I011"
],
"notifications": [],
"scope": {
"cves": [],
"riskFactors": [],
"designators": [{
"accountID": "",
"cloudProvider": "",
"cluster": "",
"kind": "",
"name": "",
"namespace": "",
"region": "",
"service": "EC2Instance"
}]
},
"actions": [],
"applyNetworkPolicy": false,
"applySeccompProfile": false
}
Query Params
string
required

Unique identifier for the customer.

Body Params

Request body containing policy details.

actions
array

Array of actions to take when policy violations are detected.

actions
boolean

Whether to apply network policy.

boolean

Whether to apply seccomp profile.

string

Description of what the policy does.

boolean

Whether the policy is enabled.

incidentTypeIDs
array of strings

Array of incident type IDs that this policy covers.

incidentTypeIDs
string

Name of the policy.

notifications
array

Array of notification configurations.

notifications
string

Type of rule set (e.g., "Custom", "Predefined").

scope
object

Scope to which the policy applies.

Responses
200
400
401
403

Updated 5 months ago

Language
Credentials
URL
Response 
Click Try It! to start a request and see the response here!
Updated 5 months ago