What Can You Do Today?

User Management

Create and configure unique user accounts for each POS terminal using complex passwords with 90 day (or less) password rotations.
Create unique user accounts with complex passwords and 90 day (or less) password rotations for each user who needs access to the Back of House (BOH) file server or other workstations connected to the POS network; complex passwords are seven characters or longer containing a mixture of upper and lower case characters with numbers and/or non-alphanumeric characters, does not contain any part of the user name, and has not been used as any of the prior four passwords.
Set first time passwords to a unique value for each user and configure to prompt for change at first use.
Configure systems to limit user account exposure to automated brute force attacks by limiting repeated failed login attempts to six (or less) and locking out users for 30 minutes (or more) once the failed attempts threshold has been meet.
Based on operating needs, configure systems to automatically lockout logged in users after a period of inactivity, requiring account and password validation upon return.
Remove any unnecessary user accounts including those provided by third party vendors; where vendor accounts are required, ensure they are using complex passwords that follow 90 day (or less) password rotations.
Revoke access for any terminated users.

Retail Data Security Home - Contact Us
PCI Compliance 101 Data Security Milestones What Can You Do Today? Life Cycle of a Data Security Breach Data Security e-Newsletter Additional Resources

< Back What Can You Do Today? User Management Create and configure unique user accounts for each POS terminal using complex passwords with 90 day (or less) password rotations. Create unique user accounts with complex passwords and 90 day (or less) password rotations for each user who needs access to the Back of House (BOH) file server or other workstations connected to the POS network; complex passwords are seven characters or longer containing a mixture of upper and lower case characters with numbers and/or non-alphanumeric characters, does not contain any part of the user name, and has not been used as any of the prior four passwords. Set first time passwords to a unique value for each user and configure to prompt for change at first use. Configure systems to limit user account exposure to automated brute force attacks by limiting repeated failed login attempts to six (or less) and locking out users for 30 minutes (or more) once the failed attempts threshold has been meet. Based on operating needs, configure systems to automatically lockout logged in users after a period of inactivity, requiring account and password validation upon return. Remove any unnecessary user accounts including those provided by third party vendors; where vendor accounts are required, ensure they are using complex passwords that follow 90 day (or less) password rotations. Revoke access for any terminated users.

© 2011 Radiant Systems, Inc. All Rights Reserved. Powered by CounterPoint Retail Point of Sale.