User Manual Part 2
Wi-Fi Array
457
The Xirrus Array PCI Compliance Configuration
The check list below is designed to help ensure that Xirrus Wi-Fi Arrays are
configured in a manner that is supportive of PCI Data Security Standards.
Detailed configuration steps for each item are found in the referenced section of
the User’s Guide.
Xirrus Wi-Fi Array Configuration for PCI DSS See...
( )
( )
Register at the Xirrus Support Site to ensure
notification and access to software updates.
Confirm that the latest version of the Array OS is
being used by checking the Xirrus web site.
support.xirrus.com
( ) Enable PCI Mode after configuring the Array in a
PCI compliant state to ensure configuration
changes cannot be saved that would invalidate a
PCI compliant configuration. This item is covered
on the following pages.
The pci-audit
Command, p. 458
( ) Allow only necessary protocols and networks to be
accessed by configuring your corporate firewall or
using the internal Array firewall.
Filters, p. 310
( )
( )
( )
( )
( )
( )
Change the default Admin account password.
Remove any unnecessary admin or user accounts.
Change the SNMP community string from the
default password.
Use WPA2 and 802.1x authentication.
Change default SSID from Xirrus to a user-defined
SSID.
Disable SSID broadcast for all PCI compliant
SSIDs.
Express Setup, p. 173
Admin Management,
p. 215
SNMP, p. 199
SSIDs, p. 243 and
Global Settings, p. 231
SSIDs, p. 243
SSIDs, p. 243
( )
( )
( )
Enable Secure Shell (ssh) for CLI (command line)
access.
Confirm telnet access is disabled (done by default).
Confirm management over the wireless network is
disabled.
Management Control,
p. 222
Global Settings (IAP),
p. 277