Enabling masking of sensitive data

Enable masking to protect sensitive data when it is displayed or sent.

  1. In the user interface, click the Administration tab.
  2. If you are using the relational database interface, you must enable masking values of encrypted attributes.
    1. Select Mandators > Settings. Select a mandator.
    2. Scroll down to the Relational Database Interface section.
      Figure 1. Relational Database Interface settings
      This image is explained in the surrounding text.
    3. Select the Mask encrypted values checkbox.
      Note: Repeat for all mandators.
  3. Click the Cluster tab and select Interfaces > Outgoing channel configurations from the navigation menu.
  4. For every outgoing channel configuration, select the Mask values checkbox unless you have a business need not to do so.
    Figure 2. Outgoing channel configuration settings
    This image is explained in the surrounding text.
    Note: If you disable the Mask values option make sure that only notifications, case actions, and external queries with a business need are associated with that outgoing channel configuration. If you store unmasked data that is received from an outgoing channel configuration, you must make sure to protect it according to PCI DSS requirements 3.4.1, 3.5, 3.6 and all applicable subrequirements.