Prisma Cloud Compute must not write sensitive data to event logs.
An XCCDF Rule
Description
<VulnDiscussion>The determination of what is sensitive data varies from organization to organization. The organization must ensure the recipients for the event log information have a need to know and the log is sanitized based on the audience.</VulnDiscussion><FalsePositives></FalsePositives><FalseNegatives></FalseNegatives><Documentable>false</Documentable><Mitigations></Mitigations><SeverityOverrideGuidance></SeverityOverrideGuidance><PotentialImpacts></PotentialImpacts><ThirdPartyTools></ThirdPartyTools><MitigationControl></MitigationControl><Responsibility></Responsibility><IAControls></IAControls>
- ID
- SV-253541r879655_rule
- Severity
- Medium
- References
- Updated
Remediation - Manual Procedure
Navigate to Prisma Cloud Compute Console's >> Manage >> System >> General tab.
In the Log Scrubbing section, set "Automatically scrub secrets from runtime events" to "on" and click "Save".