Hi,
Currently we are streaming logs directly into Splunk and that works great.
Recently however, there has been a request to remove or mask personally identifiable information from the logs, like names and email addresses.
What is the simplest way to achieve this?
yoav
2
- List item
Hi @jemdelcarmen
There are a few approaches you can take currently:
- filter out any logs that you do not need and might contain the PII information you mentioned above - Log Stream Filters
- stream the logs to a data lake and then transform the data / mask the relevant fields before sending them to Splunk
- I wonder if there is a way to mask these fields on the Splunk side when the logs are streamed over
I hope this helps
1 Like
Thank you @yoav for helping on this one!
system
Closed
4
This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.