Define User Privacy Settings in the Admin Role Profile

To define what private end user data an administrator has access to, when creating or editing an admin role profile (
Device
Admin Roles
), scroll down to the
Privacy
option on the
WebUI
tab.
Access Level
Description
Enable
Read Only
Disable
Privacy
Sets the default state to enable or disable for all of the privacy settings described below.
Yes
N/A
Yes
Show Full IP addresses
When disabled, full IP addresses obtained by traffic running through the Palo Alto firewall are not shown in logs or reports. In place of the IP addresses that are normally displayed, the relevant subnet is displayed.
Scheduled reports that are displayed in the interface through
Monitor
Reports
and reports that are sent via scheduled emails will still display full IP addresses. Because of this exception, we recommend that the following settings within the
Monitor
tab be set to disable: Custom Reports, Application Reports, Threat Reports, URL Filtering Reports, Traffic Reports and Email Scheduler.
Yes
N/A
Yes
Show User Names in Logs and Reports
When disabled, user names obtained by traffic running through the Palo Alto Networks firewall are not shown in logs or reports. Columns where the user names would normally be displayed are empty.
Scheduled reports that are displayed in the interface through
Monitor
Reports
or reports that are sent via the email scheduler will still display user names. Because of this exception, we recommend that the following settings within the Monitor tab be set to disable: Custom Reports, Application Reports, Threat Reports, URL Filtering Reports, Traffic Reports and Email Scheduler.
Yes
N/A
Yes
View PCAP Files
When disabled, packet capture files that are normally available within the Traffic, Threat and Data Filtering logs are not displayed.
Yes
N/A
Yes

Related Documentation