What Can You Do Today?

Ensure all default passwords are removed from the remote access software and use unique and complex passwords for each customer.
Ensure there is a mechanism in place for rotating passwords on a regular basis.
Ensure encrypted data transmission is enabled on the remote access software.
Ensure account lockout after a certain number of failed login attempts is enabled.
Ensure all connections are initiated and managed by the on-site user and only enabled when needed. Remote access tools should not be left in a listening mode.
Ensure there is a mechanism for forcing automatic logoff after predetermined time of inactivity.
Ensure the logging function on the remote access software is enabled.
Limit remote connections to specific known IP/MAC addresses.
Review default configuration settings and changes to comply with secure implementation guidelines and ensure connection is running over a secure protocol such as a Virtual Private Network (VPN) connection through a firewall.

Restaurant Data Security Home - Contact Us
PCI Compliance 101 Data Security Milestones What Can You Do Today? Life Cycle of a Data Security Breach Data Security e-Newsletter Additional Resources

< Back What Can You Do Today? Remote Access Configuration Ensure all default passwords are removed from the remote access software and use unique and complex passwords for each customer. Ensure there is a mechanism in place for rotating passwords on a regular basis. Ensure encrypted data transmission is enabled on the remote access software. Ensure account lockout after a certain number of failed login attempts is enabled. Ensure all connections are initiated and managed by the on-site user and only enabled when needed. Remote access tools should not be left in a listening mode. Ensure there is a mechanism for forcing automatic logoff after predetermined time of inactivity. Ensure the logging function on the remote access software is enabled. Limit remote connections to specific known IP/MAC addresses. Review default configuration settings and changes to comply with secure implementation guidelines and ensure connection is running over a secure protocol such as a Virtual Private Network (VPN) connection through a firewall.

© 2011 Radiant Systems, Inc. All Rights Reserved.