Attention: To align with new corporate security policies, and to match policies adopted by other communities within Oracle, the My Oracle Support Community access requirements will change beginning September 18, 2025. MOSC will now require that member accounts in our community be associated to a *corporate* email address. This means that users with generic domains (such as gmail.com, yahoo.com, and others) will no longer be granted access to the discussion forums and ideas labs. If this policy affects you, act now to change the email address that is associated with your Oracle (and community) account. Alternatively, you can opt to create a new Oracle account that uses your corporate email domain.

Oracle Solaris System Administration (MOSC)

PCI Baseline

Feb 19, 2015 4:41AM edited Feb 19, 2015 4:41AM in Oracle Solaris System Administration (MOSC) Question

Hello

We are asked to implement a PCI compliance base line on our solaris servers, it requires the attached doc "".

Till now I could only figure out how to do the following:

no empty passwords

logins -p

no uid 0 except for root

logins -o | awk -F: '($2 == 0) { print $1 }'

Set default group for root to something other than the others group

passmgmt -m -g 0 root

disable inactive accounts of 21 days

vi /etc/default/passwd

user comments in /etc/passwd
Ensure that the following accounts are locked “LK” in the encrypted password field in the /etc/shadow file:

adm

bin

daemon

Tagged:

baseline

0

Howdy, Stranger!

To view full details, sign in to My Oracle Support Community.

Don't have a My Oracle Support Community account? Click here to get started.

Category Leaderboard

Top contributors this month