Masking the content of an XML request in the ASM logs

Question

One of our client's applications receives XML requests that include a sensitive parameter, which we shouldn't log. Let's call it "&lt; pin &gt;".&nbsp;
I've read that the XML Profile allows me to mask data by defining an element or an attribute as sensitive. So I have tried masking the &lt; pin &gt; element with both the options "Any Namespace" and "No Namespace" selected. But I still haven't been able to mask the pin.&nbsp;
After examining the requests I've noted that some elements, including &lt; pin &gt; are located inside a CDATA tag.&nbsp;
Have you encountered something similar before? The XML structure looks a bit like this:&nbsp;

neptune_121018 · Answer

The sample XML request&nbsp;
&nbsp;

Forum Discussion

Masking the content of an XML request in the ASM logs

1 Reply

Recent Discussions

vulnerabilities (CVE-2020-36363), CVE-2016-0736,CVE-2019-6593-FOR VERSION BIGIP LTM-16.1.4

Unwinding the Benefits of Investing in White Label Crypto Wallet

SMTP profile not visible & showing

About AWAF "Redirect URLs" in "Responses and Blocks"

F5 iRule to replace host to path

Related Content

Response port masking

DevCentral Content Highlights

Distributed caching of authentication requests with NGINX Ingress Controller

This DevCentral Content has been Archived or Deleted

Logging DNS Requests