IBM Support

Masking Guardium SQL Logging Exceptions

Product Documentation


Abstract

Guardium may capture sensitive information if a SQL query containing sensitive information fails. This document identifies best practices and additional resources for masking SQL logging exceptions.

Content

Guardium may capture sensitive information if a SQL query containing sensitive information fails.  To mask sensitive information on SQL exceptions, use the following CLI command:

            store snif_mask_sql_value on

For custom masking, use the CLI command to turn SQL masking off (store snif_mask_sql_value off) and use exception rule pattern masking.

To see the current SQL masking setting, use the following CLI command:

            show snif_mask_sql_value

For more information about the snif_mask_sql_value CLI command, see Configuration and Control CLI commands.

For more information about exception rule pattern masking, see Regular Expressions.

[{"Business Unit":{"code":"BU059","label":"IBM Software w\/o TPS"},"Product":{"code":"SSMPHH","label":"IBM Security Guardium"},"Component":"","Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"10.6","Edition":"","Line of Business":{"code":"LOB24","label":"Security Software"}}]

Document Information

Modified date:
10 December 2018

UID

ibm10743197