Settings API - Sensitive data masking schema table

Sensitive data masking (`builtin:logmonitoring.sensitive-data-masking-settings`)

Create rules to mask any information you consider to be sensitive. For more details and examples, see documentation

Masking is done on OneAgent, and no personal data is sent or stored on Dynatrace server.

Schema ID	Schema groups	Scope
`builtin:logmonitoring.sensitive-data-masking-settings`	`group:log-monitoring` `group:log-monitoring.ingest-and-processing`	`HOST` - Host `HOST_GROUP` - Host Group `environment`

Retrieve schema via Settings API

GET	Managed	`https://{your-domain}/e/{your-environment-id}/api/v2/settings/schemas/builtin:logmonitoring.sensitive-data-masking-settings`
	SaaS	`https://{your-environment-id}.live.dynatrace.com/api/v2/settings/schemas/builtin:logmonitoring.sensitive-data-masking-settings`
	Environment ActiveGate	`https://{your-activegate-domain}/e/{your-environment-id}/api/v2/settings/schemas/builtin:logmonitoring.sensitive-data-masking-settings`

Authentication

To execute this request, you need an access token with Read settings (settings.read) scope. To learn how to obtain and use it, see Tokens and authentication.

Parameters

Property	Label	Type	Description	Required
enabled	Active	boolean	-	required
config-item-title	Name	text	-	required
masking	-	Masking	-	required
matchers	-	set	-	required

Request body objects

The `Masking` object

Property	Label	Type	Description	Required
expression	Search expression	text	Maximum one capture group is allowed. If none was given, the whole expression will be treated as a capture group.	required
type	Masking type	enum	-	required
replacement	Replacement	text	-	required

The `Matcher` object

Property	Label	Type	Description	Required
attribute	Attribute	enum	-	required
operator	Operator	enum	-	required
values	-	set	-	required