Field Display Permissions¶
After data is collected and reported to the Guance workspace, sensitive information fields within it, such as IP addresses and user information, can be desensitized by configuring sensitive fields.
Note
-
Different data types (including: LOG, OBJECT, Resource Catalog, EVENT, APM, RUM, NETWORK, PROFILE) allow for custom configuration of sensitive fields under that data (field names are case-sensitive);
-
After a field is configured for desensitization, data of the string (
string) type field will display as***; -
Only after desensitization rules are added can the selected member roles view the original data; other members will not be able to view the information before desensitization in the Explorer or charts.
Add Rules¶
- Go to Manage > Field Display Permissions > Add Rules;
- Define the name of the desensitization rule;
- Select the data type;
- Enter the field(s) that need desensitization (single or multiple fields can be selected);
- Write a regular expression, i.e., configure desensitization for the field value content through regex syntax; currently, you can directly choose from the Template Library or input a custom expression;
- Click Preview, enter the original text, and click Desensitize to view the desensitization effect.
- Select the roles that need to have the data masked;
- Confirm, and you can view the configured sensitive fields.
Note
If multiple fields need desensitization, separate them with commas ,; use * to represent all fields.
As shown in the figure, the system will match results based on the regular expression on the left, and the matched results will be desensitized as ***.
Manage Rules¶
- Enter the rule name in the search bar on the right side of the page to quickly locate it;
- Edit and modify the current rule;
- Delete a rule;
- Batch select rules and perform enable, disable, or delete operations.