Update SIEM destination - Truthlocks Documentation

Updates a SIEM streaming destination. You can change the endpoint URL, rotate credentials, or toggle streaming on and off. Only the fields you include in the request body are updated.

Parameters

string

required

The SIEM destination ID (e.g., siem_abc123).

endpoint

string

New HTTPS endpoint URL.

token

string

New authentication token (Splunk, Datadog, Elastic).

access_key_id

string

New AWS access key ID (CloudWatch).

secret_access_key

string

New AWS secret access key (CloudWatch).

secret

string

New shared secret (custom webhook).

enabled

boolean

Enable or disable streaming.

​Parameters

​Responses

Parameters

Responses