STIGhubSTIGhub
STIGsSearchCompare

STIGhub

A free tool to search and browse the entire DISA STIG library. Saves up to 75% in security compliance research time.

Navigation

  • Browse STIGs
  • Search
  • Compare Versions

Resources

  • About
  • Release Notes
  • VPAT
  • DISA STIG Library
STIGs updated 5 hours ago
Powered by Pylon
© 2026 Beacon Cloud Solutions, Inc. All rights reserved.
← Back to Palo Alto Networks Prisma Cloud Compute Security Technical Implementation Guide

V-253541

CAT II (Medium)

Prisma Cloud Compute must not write sensitive data to event logs.

Rule ID

SV-253541r961167_rule

STIG

Palo Alto Networks Prisma Cloud Compute Security Technical Implementation Guide

Version

V2R3

CCIs

CCI-001312

Discussion

The determination of what is sensitive data varies from organization to organization. The organization must ensure the recipients for the event log information have a need to know and the log is sanitized based on the audience.

Check Content

Navigate to Prisma Cloud Compute Console's >> Manage >> System >> General tab. 

Inspect the Log Scrubbing section. If "Automatically scrub secrets from runtime events" is "off", this is a finding.

Fix Text

Navigate to Prisma Cloud Compute Console's >> Manage >> System >> General tab. 

In the Log Scrubbing section, set "Automatically scrub secrets from runtime events" to "on" and click "Save".