Guardium may capture sensitive information if a SQL query containing sensitive information fails. This document identifies best practices and additional resources for masking SQL logging exceptions.
Guardium may capture sensitive information if a SQL query containing sensitive information fails. To mask sensitive information on SQL exceptions, use the following CLI command:
store snif_mask_sql_value on
For custom masking, use the CLI command to turn SQL masking off (store snif_mask_sql_value off) and use exception rule pattern masking.
To see the current SQL masking setting, use the following CLI command:
For more information about the snif_mask_sql_value CLI command, see Configuration and Control CLI commands.
For more information about exception rule pattern masking, see Regular Expressions.
Was this topic helpful?
10 December 2018