Customer Center Questions Related to PCI Audit
Last updated on MAY 16, 2018
Applies to:Oracle Communications Billing and Revenue Management - Version 18.104.22.168.0 and later
Information in this document applies to any platform.
Several issues related to Customer Center have been raised by our PCI Auditors that the user has NOT found answers to in the Oracle BRM documentation:
1. How does the user configure Customer Center to enforce password complexity (i.e. minimum 8 characters, mixed case, at least one special character or number)?
2. For the Customer Center users that have the ability to view credit card numbers in plain text (i.e. "/accounttool/creditcard" permission = read/write), the user needs the system to log every time a credit card is retrieved (without logging the actual credit card number obviously). How can this be done?
3. How does the user enforce a session timeout in Customer Center?
Sign In with your My Oracle Support account
Don't have a My Oracle Support account? Click to get started
My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms