|
| 1 | +--- |
| 2 | +title: Protect sensitive data in Azure Front Door logs |
| 3 | +description: Learn how to protect sensitive data in Azure Front Door logs by using the log scrubbing tool. |
| 4 | +author: halkazwini |
| 5 | +ms.author: halkazwini |
| 6 | +ms.service: frontdoor |
| 7 | +ms.topic: how-to #Required; leave this attribute/value as-is. |
| 8 | +ms.date: 04/30/2024 |
| 9 | + |
| 10 | +#CustomerIntent: As an Azure administrator, I want to use the log scrubbing tool so that I can protect sensitive data in Azure Front Door logs. |
| 11 | +--- |
| 12 | + |
| 13 | +# Protect sensitive data in Azure Front Door logs |
| 14 | + |
| 15 | +In this article, you learn how to use the log scrubbing tool to protect sensitive data in Azure Front Door logs. For more information about sensitive data protection in Azure Front Door, see [Azure Front Door sensitive data protection](sensitive-data-protection.md). |
| 16 | + |
| 17 | +## Prerequisites |
| 18 | + |
| 19 | +Before you can use the log scrubbing tool, you must have an Azure Front Door Standard or Premium tier profile. For more information, see [Create an Azure Front Door profile](../create-front-door-portal.md). |
| 20 | + |
| 21 | +## Enable log scrubbing to protect sensitive data |
| 22 | + |
| 23 | + |
| 24 | +1. Go to the Azure Front Door Standard or Premium profile. |
| 25 | + |
| 26 | +1. Under **Settings**, select **Configuration**. |
| 27 | + |
| 28 | +1. Under **Scrub sensitive data from access logs**, select **Manage log scrubbing**. |
| 29 | + |
| 30 | + :::image type="content" source="../media/how-to-protect-sensitive-data/log-scrubbing-disabled.png" alt-text="Screenshot that shows log scrubbing is disabled."::: |
| 31 | + |
| 32 | +1. In **Manage log scrubbing**, select **Enable access log scrubbing** to enable scrubbing. |
| 33 | + |
| 34 | +1. Select the log fields that you want to scrub, then select **Save**. |
| 35 | + |
| 36 | + :::image type="content" source="../media/how-to-protect-sensitive-data/manage-log-scrubbing.png" alt-text="Screenshot that shows log scrubbing fields."::: |
| 37 | + |
| 38 | +1. In the **Configuration** page, you can now see that log scrubbing became **Enabled**. |
| 39 | + |
| 40 | + :::image type="content" source="../media/how-to-protect-sensitive-data/log-scrubbing-enabled.png" alt-text="Screenshot that shows log scrubbing is enabled."::: |
| 41 | + |
| 42 | +To verify your sensitive data protection rules, open the Azure Front Door log and search for `****` in place of the sensitive fields. |
| 43 | + |
| 44 | +## Related content |
| 45 | + |
| 46 | +- [Learn about Azure Front Door sensitive data protection](../create-front-door-portal.md). |
| 47 | +- [Learn how to create an Azure Front Door profile](sensitive-data-protection.md). |
| 48 | +- [Learn how to migrate Azure Front Door (classic) to Standard/Premium tier](../migrate-tier.md). |
0 commit comments