Customer Center Questions Related to PCI Audit
(Doc ID 1061491.1)
Last updated on MAY 16, 2018
Applies to:Oracle Communications Billing and Revenue Management - Version 184.108.40.206.0 and later
Information in this document applies to any platform.
Several issues related to Customer Center have been raised by our PCI Auditors that the user has NOT found answers to in the Oracle BRM documentation:
1. How does the user configure Customer Center to enforce password complexity (i.e. minimum 8 characters, mixed case, at least one special character or number)?
2. For the Customer Center users that have the ability to view credit card numbers in plain text (i.e. "/accounttool/creditcard" permission = read/write), the user needs the system to log every time a credit card is retrieved (without logging the actual credit card number obviously). How can this be done?
3. How does the user enforce a session timeout in Customer Center?
To view full details, sign in with your My Oracle Support account.
Don't have a My Oracle Support account? Click to get started!