An optional configuration to the Syslog and WS-M agents allows redaction patterns to be applied to all incoming messages before processing them in order to replace sensitive data with predetermined placeholders.

1. Create the following configuration files:

   1. Create the custom configuration file(s):

      1. For Syslog agents: /app/flume/syslog_agents/conf/custom.conf.

      2. For WS-M agents: /app/flume/wsm_agents/conf/custom.conf.

   2. Add the desired configuration to the file(s) in the following JSON format:

      { "redactions": [ { "pattern": "<Search pattern (Regular Expression)>", "placeholder": "<Replacement Text>" }, { ... } ] }

      For example:

      { "redactions": [ { "pattern": "card_number=[0-9]+", "placeholder": "card_number=xxx" }, { "pattern": "customer_id=[a-zA-Z0-9]+", "placeholder": "" } ] }

2. Restart the Syslog and WS-M agents using Command Line Interface (CLI) and make sure they are running after restart.