πΌ 7.3.1 An access control system(s) is in place that restricts access based on a user's need to know and covers all system components.
-
Contextual name: πΌ 7.3.1 An access control system(s) is in place that restricts access based on a user's need to know and covers all system components.
-
ID:
/frameworks/pci-dss-v4.0/07/03/01 -
Located in: πΌ 7.3 Access to system components and data is managed via an access control system(s).
Descriptionβ
Empty...
Similarβ
- Sections
/frameworks/pci-dss-v3.2.1/07/02/01/frameworks/pci-dss-v4.0.1/07/03/01
Similar Sections (Take Policies From)β
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|---|---|---|---|
| πΌ PCI DSS v3.2.1 β πΌ 7.2.1 Coverage of all system components. | 5 | |||
| πΌ PCI DSS v4.0.1 β πΌ 7.3.1 An access control system(s) is in place that restricts access based on a user's need to know and covers all system components. | 5 |
Similar Sections (Give Policies To)β
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|---|---|---|---|
| πΌ PCI DSS v3.2.1 β πΌ 7.2.1 Coverage of all system components. | 5 | |||
| πΌ PCI DSS v4.0.1 β πΌ 7.3.1 An access control system(s) is in place that restricts access based on a user's need to know and covers all system components. | 5 |
Sub Sectionsβ
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|
Policies (5)β
| Policy | Logic Count | Flags |
|---|---|---|
| π AWS Account Root User has active access keys π’ | 1 | π’ x6 |
| π AWS IAM Policy allows full administrative privileges π’ | 1 | π’ x6 |
| π AWS IAM User has inline or directly attached policies π’ | 1 | π x1, π’ x5 |
| π AWS RDS Instance is publicly accessible and in an unrestricted public subnet π’ | 1 | π’ x6 |
| π AWS RDS Snapshot is publicly accessible π’ | 1 | π’ x6 |