Prisma Cloud Compute must not write sensitive data to event logs.
An XCCDF Rule
Description
The determination of what is sensitive data varies from organization to organization. The organization must ensure the recipients for the event log information have a need to know and the log is sanitized based on the audience.
- ID
- SV-253541r961167_rule
- Version
- CNTR-PC-000880
- Severity
- Medium
- References
- Updated
Remediation Templates
A Manual Procedure
Navigate to Prisma Cloud Compute Console's >> Manage >> System >> General tab.
In the Log Scrubbing section, set "Automatically scrub secrets from runtime events" to "on" and click "Save".