Solved

PCI and Small Business Server

Posted on 2012-03-16
1
327 Views
Last Modified: 2012-05-09
I am working with a customer needing to complete form D of PCI's SAQ.

Question 2.2.1 says is there only one primary function per server? It gives the example, are web servers, database servers and DNS servers all on separate servers.

Does this mean that a SBS would not be PCI compliant as it hosts DHCP, DNS, AD, File Server, SharePoint and Exchange all on one box?

How deep does this go? Take Exchange for instance. Exchange has a mailbox db server, a web front end and its back end.. does all this need to be separated too?
0
Comment
Question by:Schuyler Dorsey
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
1 Comment
 
LVL 63

Accepted Solution

by:
btan earned 500 total points
ID: 37732906
Do not really see that it need to be one service one physical machine as this can be complicated in virtual environment. The idea is ti isolate and segregate service oneinside so as thisto bescope down the ideadss involvement and segregate which can be lesser prone to copecracks due to cracksmany services running in same box. Sometimes it needis not reallycost effective and efficient to split up inherent web services...but we can harden and lockdown those ports etc. Some info on sbs  meeting pci dss

 http://social.technet.microsoft.com/wiki/contents/articles/853.adjustments-for-pci-dss-scan.aspx
0

Featured Post

Resolve Critical IT Incidents Fast

If your data, services or processes become compromised, your organization can suffer damage in just minutes and how fast you communicate during a major IT incident is everything. Learn how to immediately identify incidents & best practices to resolve them quickly and effectively.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Exchange 2007 3 52
MS SQL / SQL Server Native Client -- how to prevent seeing other servers? 2 55
VPN problems 4 70
Rogue RDP Connections 5 65
This subject  of securing wireless devices conjures up visions of your PC or mobile phone connecting to the Internet through some hotspot at Starbucks. But it is so much more than that. Let’s look at the facts: devices#sthash.eoFY7dic.
Cybersecurity has become the buzzword of recent years and years to come. The inventions of cloud infrastructure and the Internet of Things has made us question our online safety. Let us explore how cloud- enabled cybersecurity can help us with our b…
Exchange organizations may use the Journaling Agent of the Transport Service to archive messages going through Exchange. However, if the Transport Service is integrated with some email content management application (such as an antispam), the admini…
Attackers love to prey on accounts that have privileges. Reducing privileged accounts and protecting privileged accounts therefore is paramount. Users, groups, and service accounts need to be protected to help protect the entire Active Directory …

696 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question