Location: List Archives

List Archives

This forum is an archive of all posts to our mailing list over the past few years.  The forum is set read only therefore to contribute you will need to join our list community.  See more info about this here.

 

When subscribed to the list you should use your standard email client to send your posts to ActiveDir@mail.activedir.org.

List Archives

Forums >ActiveDir Mail List Archive >List Archives
Subject: [ActiveDir] (OT) PCI DSS Audit and Active Directory/Windows
Prev Next
You are not authorized to post a reply.

AuthorMessages
TGUser is Offline

Posts:298

07/16/2008 5:42 PM  
Return Receipt

Your [ActiveDir] (OT) PCI DSS Audit and Active Directory/Windows
document:

was Tony.Gordon@hewitt.com
received
by:

at: 05/19/2008 12:42:06 PM







The information contained in this e-mail and any accompanying documents may contain information that is confidential or otherwise protected from disclosure. If you are not the intended recipient of this message, or if this message has been addressed to you in error, please immediately alert the sender by reply e-mail and then delete this message, including any attachments. Any dissemination, distribution or other use of the contents of this message by anyone other than the intended recipient is strictly prohibited. All messages sent to and from this e-mail address may be monitored as permitted by applicable law and regulations to ensure compliance with our internal policies and to protect our business. E-mails are not secure and cannot be guaranteed to be error free as they can be intercepted, amended, lost or destroyed, or contain viruses. You are deemed to have accepted these risks if you communicate with us by e-mail.



List info : http://www.activedir.org/List.aspx
List FAQ : http://www.activedir.org/ListFAQ.aspx
List archive: http://www.activedir.org/ma/default.aspx
neilrustonUser is Offline

Posts:164

07/16/2008 5:46 PM  
Quest have solutions targeted at PCI and a web page with some useful
info : http://www.quest.com/compliance-central/pci-compliance.aspx

Official PCI docs are here :
https://www.pcisecuritystandards.org/tech/download_the_pci_dss.htm

I'm sure other vendors have offerings too :)

Hope that helps,
neil


-----Original Message-----
From: ActiveDir-owner@mail.activedir.org
[mailto:ActiveDir-owner@mail.activedir.org] On Behalf Of Mark Parris (L)
Sent: 19 May 2008 18:22
To: ActiveDir
Subject: [ActiveDir] (OT) PCI DSS Audit and Active Directory/Windows

Hello,


Has anyone gone through a PCI DSS audit and come out the other side? I
am in the middle of a pre-audit and would be interested to know (off
line if preferred) what you had to do to achieve it - in my opinion the
standard is very high level in certain areas and almost contradictory in
different categories - leaving it open to interpretation - which is
causing huge areas of debate

The company I am working with is a Level 1 merchant.

Has anyone segmented their network, does/did this cause you issues with
AD/Windows?

What did you use for a syslog server?

Any gotcha's people found?

Has anyone found any good documentation or online resources?

Thanks in advance



Regards,

Mark Parris
List info : http://www.activedir.org/List.aspx
List FAQ : http://www.activedir.org/ListFAQ.aspx
List archive: http://www.activedir.org/ma/default.aspx
Barclays Wealth is the wealth management division of Barclays Bank PLC. This email may relate to or be sent from other members of the Barclays Group.

The availability of products and services may be limited by the applicable laws and regulations in certain jurisdictions. The Barclays Group does not normally accept or offer business instructions via internet email. Any action that you might take upon this message might be at your own risk.

This email and any attachments are confidential and intended solely for the addressee and may also be privileged or exempt from disclosure under applicable law. If you are not the addressee, or have received this email in error, please notify the sender immediately, delete it from your system and do not copy, disclose or otherwise act upon any part of this email or its attachments.

Internet communications are not guaranteed to be secure or virus-free. The Barclays Group does not accept responsibility for any loss arising from unauthorised access to, or interference with, any Internet communications by any third party, or from the transmission of any viruses. Replies to this email may be monitored by the Barclays Group for operational or business reasons.

Any opinion or other information in this email or its attachments that does not relate to the business of the Barclays Group is personal to the sender and is not given or endorsed by the Barclays Group.

Barclays Bank PLC. Registered in England and Wales (registered no. 1026167).
Registered Office: 1 Churchill Place, London, E14 5HP, United Kingdom.

Barclays Bank PLC is authorised and regulated by the Financial Services Authority.
List info : http://www.activedir.org/List.aspx
List FAQ : http://www.activedir.org/ListFAQ.aspx
List archive: http://www.activedir.org/ma/default.aspx
You are not authorized to post a reply.
Forums >ActiveDir Mail List Archive >List Archives > [ActiveDir] (OT) PCI DSS Audit and Active Directory/Windows



ActiveForums 3.7
Friends

Friends

VisualClickButoton
Members

Members

MembershipMembership:
Latest New UserLatest:MrPTSai
New TodayNew Today:0
New YesterdayNew Yesterday:0
User CountOverall:5234
People OnlinePeople Online:
VisitorsVisitors:32
MembersMembers:0
TotalTotal:32
Online NowOnline Now:

Ads

Copyright 2009 ActiveDir.org
Terms Of Use