>
    Enable Data Masking
    Focus
    Download PDF
    Focus
    1. Home
    2. SaaS Security
    3. Get Started with Data Security
    4. Configure Settings on Data Security
    5. Enable Data Masking
    Download PDF
    SaaS Security

    Enable Data Masking

    Table of Contents

    Enable Data Masking

    Configure data masking on Data Security to control the exposure of data displayed in an incident snippet.
    Data Security uses data masking to mask the data in the snippets. Data masking enables you to control how Data Security stores and displays sensitive data, such as credit card numbers or Social Security numbers, to the administrator and other nonprivileged users who can view the snippet of content matched as an incident.
    By default, Data Security displays the last four digits of the value in cleartext (partial masking). For example, Data Security displays a snippet of credit card number as XXXX-XXXX-XXXX-1234. You can specify that Data Security display values in cleartext (no masking) or fully mask the data to hide all the values.
    Because the Data Masking setting applies to all cloud apps on Data Security, you must be an administrator with a Super Admin role or Admin role with access to all apps to modify this setting.
    1. Log in to Strata Cloud Manager.
    2. Select ManageConfigurationSaaS SecuritySettings Scan SettingsSensitive Fields in SnippetsEdit.
      For financial and PII policy rules, Data Security displays a snippet of 100 bytes of content before and after the violation.
      • Do not mask—Displays all the values in cleartext.
      • Partial Mask —Displays only the last four digits in cleartext.
      • Full mask—Does not display any values.
    3. Save your changes.

    © 2025 Palo Alto Networks, Inc. All rights reserved.