Admpass, Paswd, Transactions stored in the sc3 memory board – Gasboy CFN III V3.6 and Later User Manual

MDE-4739A CFN III PCI Secure Controller Software Installation/Upgrade Instructions · July 2010

Page 11

Backing Up Data

Before You Begin

Admpass

Admpass is the new secure program used to manage users and passwords. To be

PCI-compliant, all passwords must be set for a 90-day expiration date. This includes
passwords used by remote polling software and technician passwords. User passwords must be
with a minimum length of eight alphanumeric characters. User 97 and 98 can no longer be
used. User 97 and 98 are used for the “Master Password program. User 99 is reserved for use
with the “CFN Network”. Newly shipped SC3 computers: User “90” and password “Gasboy1”
(90,Gasboy1) will be loaded using “Admpass” at the factory as the initial user and password.
Note: To be PCI-complaint, change the password after installation.

Paswd

Paswd is the new command that replaces “LO SIG”. This command allows an existing user
who has already signed into the CFN III or Profit Point to change their current password.

Transactions Stored in the SC3 Memory Board

Security is the new program that will encrypt the locally stored transactions. Security requires
the entry of two keys, Master Key, and Pass Key. Master Key and Pass Key must be loaded,
and saved to two separate diskettes for the keys to become active. Transactions saved to
Tranback.dta are encrypted. For Tranback.dta to be usable, it must be restored to a system
using the exact same Master Key and Pass Key at the time the file was created. Transaction
saved to Tranback.dta from CFN III version 3.4 or earlier cannot be restored to a

PCI-compliant CFN III.

New Audit Reports Required by PCI

Journal.log on page 1 Sys_par must be enabled. For sites that are already using the New Shift
Break package this will require no changes. For sites that do not have Journal enabled, refer to

“Audit Journal”

on

page H-1

for details on creating the required Crons and commands files to

correctly handle the Journal.log file.

New Folder Protection is Used

The SC3 folders C:\SC3 and C:\SC3\BIN and are now protected folders. The Profit Point
C:\BIN, C:\Util, and C:\POS for the Profit Point are now protected folders.

New File Protection is Required

“Xpfterm.bat” must run from the DOS command line to protect particular Gasboy files. For
the list of protected files, refer to

“Serial and Model Number Tags”

on

page L-1

. This will

make a number of files read-only by the Windows XPE “Gasboy” user but allow “full access”
by the Windows XPE “Administrator” user.

Note: This will require the Gasboy Authorized Service Contractor (ASC) to be logged on as

the Windows XPE Administrator for some operation that could previously be
accomplished while logging on as the “Gasboy” user.

For example, operations like file and folder backup or to copy or move Framos.bin.