Public preview: Sensitive data protection for Azure Front Door Web Application Firewall
Share
Services
Azure's global Web Application Firewall (WAF) integrated with Azure Front Door now supports sensitive data protection through log scrubbing in preview. When a request matches the criteria of a rule and triggers a WAF action, that event is captured within the WAF logs. WAF logs are stored as plain text for debuggability, and any matching patterns with sensitive customer data like IP address, passwords, and other personally identifiable information could potentially end up in logs as plain text. To help safeguard this sensitive data, you can now create log scrubbing rules that replace the sensitive data with "\*\*\*\*\*\*".
Sensitive data protection using log scrubbing supports the creation of rules using the following variables:
* Request Header Names
* Request Cookie Names
* Request Body Post Arg Names
* Request Body Json Arg Names
* Query String Arg Names
* Request IP Address
* Request URI
Learn more about [log scrubbing rules](https://learn.microsoft.com/azure/web-application-firewall/afds/waf-sensitive-data-protection-frontdoor).
Learn how to [create your own log scrubbing rules](https://learn.microsoft.com/azure/web-application-firewall/afds/waf-sensitive-data-protection-configure-frontdoor) for sensitive data protection.
* Web Application Firewall
* Azure Front Door
* Features
* Security
* [ Azure Front Door](https://azure.microsoft.com/en-gb/products/frontdoor/)
* [ Web Application Firewall](https://azure.microsoft.com/en-gb/products/web-application-firewall/)
What else is happening at Microsoft Azure?
Read update
Services
Share
Read update
Services
Share
We’re retiring Azure Time Series Insights on 7 July 2024 – transition to Azure Data Explorer
May 31st, 2024
Services
Share