|
We currently have credit card info on our i (yes, they are encrypted)and
are preparing for a PCI audit. Currently all of our users connectdirectly
to the i via telnet (green screen) using a common group SSL cert. Wehave
been told that if we maintain that connectivity then all of theirrecommendation
workstations would be in scope and we would need to use personal
individual SSL certs for each workstation. This is the IBM
and it would be a logistical nightmare to implement and administrate.An
alternative would be to have them connect to another server than thenno
connects to the i, like a telnet proxy server or Citrix, which would
longer have them connecting directly to the i and as such theworkstations
would not be in scope. The Telnet proxy option could cause us functionkey
mapping issues and the Citrix solution is simply too slow and complexfor
our user base. I am looking for other alternatives that would meet PCI
standards. Anyone got any experience with anything else ?
Tom Duncan
Senior iSeries Administrator
Winston Brands Inc.
(847) 350-563
As an Amazon Associate we earn from qualifying purchases.
This mailing list archive is Copyright 1997-2024 by midrange.com and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available on our policy page. If you have questions about this, please contact [javascript protected email address].
Operating expenses for this site are earned using the Amazon Associate program and Google Adsense.