Skip to Main Content
Forums

APEX

Announcement

For appeals, questions and feedback about Oracle Forums, please email oracle-forums-moderators_us@oracle.com. Technical questions should be asked in the appropriate category. Thank you!

PCI-DSS Audit for Apex App

unknown-2698904Aug 28 2014 — edited Aug 29 2014

Hi Jari and ALL,

We want to use Apex for some internal app processing. But our info sec officer required it to be PCI-DSS compliant.

These are the compliance requirement:

1. Does it have SSL?

2. Do the users have unique accounts and not shared?

3. Can we enforce password policies?

4. Does it have an audit trail that we can store for at least three months in server

I know that how do do 1-3. But not sure about the 4th. How can I configure or setup the audit trail of user logins?

On the database side user logins are default audited, But how can I do it to Apex users?

Thanks all,

mk
Comments
Locked Post
New comments cannot be posted to this locked post.
Post Details
Locked on Sep 26 2014
Added on Aug 28 2014
#apex-discussions
2 comments
903 views