Mask Sensitive Information in Logs¶
Log files and the product console may contain business sensitive information. To avoid such information being exposed, users can mask sensitive information through Filebeat.
In Filebeat, you can define data patterns that need to be masked in logs. This is particularly useful if your logs contain sensitive information such as credit card numbers and access tokens.
Configure Filebeat to mask sensitive information¶
Follow the instructions given below to configure this feature.
- Navigate to the home directory of your Filebeat installation and open the filebeat.yml file.
Add the following configuration after the filebeat.inputs section. Change the masking rules to fit your requirement.
As the number of masking patterns increases, performance will be affected since each log line is matched with each pattern. It is recommended to only use the most necessary patterns.