Pc cfn software and pci-compliant passwords – Gasboy CFN III V3.6 and Later User Manual

MDE-4739A CFN III PCI Secure Controller Software Installation/Upgrade Instructions · July 2010

Page E-3

Users and Passwords

ADMPASS Program

To be PCI-compliant, passwords must expire every 90 days. The user may change their
password before the 90-day expiration date. If they wait for the entire 90 days they will be
allowed one final sign on. If the user does not change their current password at that time, their
user number will be disabled. The system begins to warn the users 10 days before their
password expiration date.

ADMPASS keeps track of the last four passwords for each user. New password entered cannot
match any of the last four passwords used. ADMPASS keeps track of failed sign on attempts.
Six consecutive failed sign on attempts over any period of time will disable that user. A
successful sign on resets the failed counter back to zero. Any user that expires can be enabled
again only by a level 10 user.

PC CFN Software and PCI-compliant Passwords

All the above rules also apply to the PC CFN software package. The PC CFN software
password is more likely to be allowed to expire due to historical practices. When this occurs
the error message could be either “invalid site number” or if caught the first time “Password
update required”.

User 0 is still allowed and is the user the PC CFN Software package uses. The password will
now be loaded as “0, 7 to 16 alphanumeric as above”. For example, 0,123abcd.

Users with permission level 10 are not allowed to connect remotely, so the PC package user
must be level 9 or less.