πΌ 7.2.1 Coverage of all system components.
- Contextual name: πΌ 7.2.1 Coverage of all system components.
- ID:
/frameworks/pci-dss-v3.2.1/07/02/01 - Located in: πΌ 7.2 Establish an access control system(s) for systems components that restricts access based on a user's need to know, and is set to βdeny allβ unless specifically allowed.
Descriptionβ
Empty...
Similarβ
- Sections
/frameworks/pci-dss-v4.0/07/03/01/frameworks/aws-fsbp-v1.0.0/ec2/01/frameworks/aws-fsbp-v1.0.0/iam/01/frameworks/aws-fsbp-v1.0.0/iam/02/frameworks/aws-fsbp-v1.0.0/iam/04/frameworks/aws-fsbp-v1.0.0/lambda/01/frameworks/aws-fsbp-v1.0.0/opensearch/01/frameworks/aws-fsbp-v1.0.0/rds/01/frameworks/aws-fsbp-v1.0.0/rds/02/frameworks/aws-fsbp-v1.0.0/s3/02/frameworks/aws-fsbp-v1.0.0/s3/03
- Internal
- ID:
dec-c-ff4b9348
- ID:
Similar Sections (Take Policies From)β
Similar Sections (Give Policies To)β
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|---|---|---|---|
| πΌ PCI DSS v4.0 β πΌ 7.3.1 An access control system(s) is in place that restricts access based on a user's need to know and covers all system components. | 7 |
Sub Sectionsβ
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|
Policies (7)β
| Policy | Logic Count | Flags |
|---|---|---|
| π AWS Account Root User has active access keys π’ | 1 | π’ x6 |
| π AWS EBS Snapshot is publicly accessible π’ | 1 | π’ x6 |
| π AWS IAM Policy allows full administrative privileges π’ | 1 | π’ x6 |
| π AWS IAM User has inline or directly attached policies π’ | 1 | π x1, π’ x5 |
| π AWS RDS Instance is publicly accessible and in an unrestricted public subnet π’ | 1 | π’ x6 |
| π AWS RDS Snapshot is publicly accessible π’ | 1 | π’ x6 |
| π Google IAM Users are assigned the Service Account User or Service Account Token Creator roles at Project level π’ | 1 | π’ x6 |