9 – Restrict Physical Access to Cardholder Data
In the Reports Portal, select > > > Reports or Dashboards > .
PCI Requirement 9 expects your organization to restrict access to devices that allow an individual physical access to the systems that store cardholder data, thus limiting the ability for malicious users to access or destroy the devices, data, systems, or hard copies.
To assess your enterprise's compliance with this requirement, use the following dashboards and reports:
| Dashboards | Reports |
|---|---|
Failed Physical Facility Access - Dashboard
Provides, in charts and table, an overview of failed attempts to access physical facilities. You can view a trend of access activity over time, as well as activity by reporting device, location, and user.
Failed Physical Facility Access - Report
Reports the number of failed attempt to access physical facilities by location. The table provides results by the target location, the user involved, the number of attempts, and when the attempt occurred.
Physical Facility Access Attempts
Reports the number of attempts to access physical facilities by location and user. The table provides results by the target location, the user involved, the outcome of the attempt, the number of attempts, and when the most recent event occurred.
Successful Physical Facility Access
Provides, in charts and table, an overview of successful attempts to access physical facilities. You can view a trend of access activity over time, as well as activity by reporting device, location, and user.