Please use the following CPL code to exclude authentication information from the main access-log.

<Exception>
exception.id=("authentication_redirect_from_virtual_host","authentication_redirect_to_virtual_host","authentication_failed","authentication_failed_password_expired", \
"authentication_redirect_off_box","authentication_success") access_log[main](no)

If you have SSL traffic intercepted, and would like to exclude SSL information from the main access-log, please include the following CPL into the local policy. 

<proxy>
client.protocol=HTTPS access_log[main](no)
 

Please refer to 000010101 on how to add a local policy file on the ProxySG.