Manual Examination ACCESS_CONTROL_8_4_A

This PCI DSS V1.2 report is posted on the Internet to promote Version 3.0 of LJK/Security . The corresponding vulnerability report for your own system should be guarded more carefully, such as by being reviewed only from local HTML disk files rather than via a web server.
Return to Main Page
Manual Examination ACCESS_CONTROL_8_4_A_031

PCI DSS V1.2 for Merchant

Findings Color Code
Compliant
Not assessed
Non-Compliant

PCI DSS 08 .04 .a

Question: Does a study of documentation and settings for the add-in ACME or LGI authentication module show that it will force all non-console access requests to avoid cleartext transmission of passwords ?

Answered by: BOSTON::GRANT

As part of Manual Examination group: ACCESS_CONTROL

Answer: YES

This PCI DSS V1.2 report is posted on the Internet to promote Version 3.0 of LJK/Security . The corresponding vulnerability report for your own system should be guarded more carefully, such as by being reviewed only from local HTML disk files rather than via a web server.