Settings API - Sensitive data masking schema table

Sensitive data masking (builtin:logmonitoring.sensitive-data-masking-settings)

Create rules to mask any information you consider to be sensitive. Masking is done on OneAgent, and no personal data is sent or stored on Dynatrace server.

Schema ID
Schema groups
Scope
builtin:logmonitoring.sensitive-data-masking-settings
  • group:log-monitoring
  • group:log-monitoring.ingest-and-processing
HOST - Host
KUBERNETES_CLUSTER - Kubernetes cluster
HOST_GROUP - Host Group
environment
GETManagedhttps://{your-domain}/e/{your-environment-id}/api/v2/settings/schemas/builtin:logmonitoring.sensitive-data-masking-settings
SaaShttps://{your-environment-id}.live.dynatrace.com/api/v2/settings/schemas/builtin:logmonitoring.sensitive-data-masking-settings
Environment ActiveGatehttps://{your-activegate-domain}/e/{your-environment-id}/api/v2/settings/schemas/builtin:logmonitoring.sensitive-data-masking-settings

Authentication

To execute this request, you need an access token with Read settings (settings.read) scope. To learn how to obtain and use it, see Tokens and authentication.

Parameters

Property
Type
Description
Required
Active
enabled
boolean
-
required
Name
config-item-title
text
-
required
masking
-
required
matchers
Set<Matcher>
-
required
The Masking object
Property
Type
Description
Required
Search expression
expression
text

Maximum one capture group is allowed. If none was given, the whole expression will be treated as a capture group.

required
Masking type
type
enum
  • STRING
  • SHA1
  • SHA256
required
Replacement
replacement
text
-
required
The Matcher object
Property
Type
Description
Required
Attribute
attribute
enum
  • dt.entity.process_group
  • log.source
  • log.source.origin
  • host.tag
  • k8s.container.name
  • k8s.namespace.name
  • k8s.deployment.name
  • container.name
  • dt.entity.container_group
  • process.technology
required
Operator
operator
enum
  • MATCHES
required
values
set
-
required