Manual Examination ACCESS_CONTROL_7_1_1

This PCI DSS V1.2 report is posted on the Internet to promote Version 3.0 of LJK/Security . The corresponding vulnerability report for your own system should be guarded more carefully, such as by being reviewed only from local HTML disk files rather than via a web server.
Return to Main Page
Manual Examination ACCESS_CONTROL_7_1_1_021

PCI DSS V1.2 for Merchant

Findings Color Code
Compliant
Not assessed
Non-Compliant

PCI DSS 07 .01 .01

Question: Does the written policy for data control require that privileged usernames be restricted to the least privileges necessary to perform job responsibilities ?

Answered by: BOSTON::GRANT

As part of Manual Examination group: ACCESS_CONTROL

Answer: YES

This PCI DSS V1.2 report is posted on the Internet to promote Version 3.0 of LJK/Security . The corresponding vulnerability report for your own system should be guarded more carefully, such as by being reviewed only from local HTML disk files rather than via a web server.