Customer Center Questions Related To PCI Audit (Doc ID 1061491.1)

Last updated on SEPTEMBER 26, 2016

Applies to:

Oracle Communications Billing and Revenue Management - Version 7.2.1.0.0 and later
Information in this document applies to any platform.
Checked for relevance on 26-Mar-2012.


Goal

Several issues related to Customer Center have been raised by our PCI Auditors that the user has NOT found answers to in the Oracle BRM documentation:

1.   How does the user configure Customer Center to enforce password complexity (i.e. minimum 8 characters, mixed case, at least one special character or number)?

2.   For the Customer Center users that have the ability to view credit card numbers in plain text (i.e. "/accounttool/creditcard" permission = read/write), the user needs the system to log every time a credit card is retrieved (without logging the actual credit card number obviously). How can this be done?

3.  How does the user enforce a session timeout in Customer Center?

Solution

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms