This page describes the configurations that you can set up for the Cloud Security module. 

Enable Cloud Security 

To enable the module:

  1. Go to the FSO Platform Exchange, and click Subscribe under the Cloud Security module.
  2. Once you have Cloud Security subscribed, go to Configure > Data Sources > Kubernetes and APM to configure Kubernetes security. 
  3. Enter your Credential set name, and Kubernetes cluster name. Then, ensure that the cluster name aligns with the Global cluster name. 

  4. Select Enable security monitoring
    After you select Enable security monitoring, the collector YAML file changes. See example:

    appdynamics-security-collector:
  enabled: true
  panoptica:
    controller:
      agentID: <SecurityCollector AgentID>
      secret:
        sharedSecret: <SecurityCollector Secret>
    CODE
  5. Copy or download the configuration files. 

  6. Install Kubernetes and App Service Monitoring Using Helm Charts

By default, all Cisco Observability Platform users can view Cloud Security with read-only permission. 

Configure Cloud Security  

From Cisco Secure Application > Configure page, you can add configurations these Cloud Security configurations: 

  1. From Configure, go to Security > Log Data Masking to define sensitive data expressions. 
    Currently, this feature is available for logs only.

  2. (Optional) Click Create masking expression
    You will see default masking expressions assigned to you. If you Create masking expressions, then Masking Rules must be created. 

  3. Assign the following: 
    1. Expression name 
    2. Regex for matching data 
    3. Data sensitivity leve
  4. Click Save
  5. Create Masking Rules, and click Save
    You can enable, and disable some of the Masking Rules using the Monitoring Status

See Mask Sensitive Data

Overview UI Screenshot