Configure policies
Some policy types are configurable. This means that you can create new, customized version of that policy type with your own configuration parameters. You can also disable a policy if you need to temporarily disregard it, or delete a policy altogether if it doesn't match your needs.
Note
Historic evaluation results for the default policy configuration are removed if you delete or customize a policy.
Add a policy
To add a new policy, select the policy type that you want to customize. All custom policies use a policy type as a base.
You can edit the display name and description of the new policy to help better communicate the compliant and non-compliant states of the policy. You can not change the name of the policy type, only its display names.
The available configuration parameters for a policy depends on the policy type that you're editing. For more information, refer to Policy types.
To add a policy:
Go to the Policies page in the Docker Scout Dashboard.
Select the Add policy button to open the policy configuration screen.
On the policy configuration screen, locate the policy type that you want to configure, and select Configure to open the policy configuration page.
- If the Configure button is grayed out, it means the current policy has no configurable parameters.
- If the button reads Integrate, it indicates that setup is required before the policy can be enabled. Selecting Integrate will direct you to the integration's setup guide.
Update the policy parameters.
Save the changes:
- Select Save policy to commit the changes and enable the policy for your current organization.
- Select Save and disable to save the policy configuration without enabling it.
Edit a policy
Editing a policy lets you to modify its configuration without creating a new one from scratch. This can be useful when policy parameters need adjustments due to evolving requirements or changes in your organization's compliance goals.
To edit a policy:
- Go to the Policies page in the Docker Scout Dashboard.
- Select the policy you want to edit.
- Select the Edit button.
- Update the policy parameters.
- Save the changes.
Disable a policy
When you disable a policy, evaluation results for that policy are hidden, and no longer appear in the Docker Scout Dashboard or in the CLI. Historic evaluation results aren't deleted if you disable a policy, so if you change your mind and re-enable a policy later, results from earlier evaluations will still be available.
To disable a policy:
- Go to the Policies page in the Docker Scout Dashboard.
- Select the policy you want to disable.
- Select the Disable button.
Delete a policy
When you delete a policy, evaluation results for that policy are deleted as well, and no longer appear in the Docker Scout Dashboard or in the CLI.
To delete a policy:
- Go to the Policies page in the Docker Scout Dashboard.
- Select the policy you want to delete.
- Select the Delete button.
Recover a deleted policy
If you've deleted a policy, you can recreate it by following the steps in Add a policy. On the policy configuration screen, select Configure on the deleted policy that you wish to recreate.