We are moving WSMUniversity to a new location. If you can't find a helpful article here, try WSMU Beta
Call Us!619.278.0871
 

Requirement 2:

Do not use vendor-supplied defaults for system passwords and other security parameters

 
Question
Yes No
2.1
1.2.1a Inbound and outbound traffic are restricted to that
which is necessary for the cardholder data
environment, and the restrictions documented.
X  
2.1.1
For wireless environments connected to the
cardholder data environment or transmitting
cardholder data, defaults are changed as follows:
   
2.1.1a  
Encryption keys are changed from default at
installation, and changed anytime anyone with
knowledge of the keys leaves the company or
changes positions.
X  
2.1.1b  
Default SNMP community strings on wireless
devices are changed
X  
2.1.1c  
Default passwords/passphrases on access points
are changed
X  
2.1.1d  
Firmware on wireless devices are updated to
support strong encryption for authentication and
transmission over wireless networks.
X  
2.1.1e  
Other security-related wireless vendor defaults are
changed, if applicable.
X  
 
Only necessary services, protocols, daemons, etc.
are enabled as required for the function of the
system (services and protocols not directly needed
to perform the device
   
   
 
Live Chat - Currently Offline

Additional Support

Company