locked
Trustwave PCI Compliance Scan Failure for "Network Service Stopped Responding" RRS feed

  • Question

  • According to Trustwave this is typically caused by the firewall preventing them from being able to complete their scan.  They claim that this is only resolved by temporarily allowing access through our firewall for them to complete the scan.  This seems counter intuitive.  Anyone else have this issue and know of any way to resolve it?  We are currently running on Azure under a standard website with SSL certificate.
    Wednesday, August 27, 2014 7:31 PM

Answers

  • Hi,

    Kindly note the PCI DSS compliance and expanded ISO certification for Windows Azure:

    http://azure.microsoft.com/blog/2014/01/16/announcing-pci-dss-compliance-and-expanded-iso-certification-for-windows-azure-general-availability-of-windows-azure-hyper-v-recovery-manager-and-other-updates-to-windows-azure/

    Also, Azure is Level 1 compliant under the Payment Card Industry (PCI) Data Security Standards (DSS) as verified by an independent Qualified Security Assessor (QSA), allowing merchants to establish a secure cardholder environment and to achieve their own certification.

    You may refer to the discussion in the below web-link:

    http://community.spiceworks.com/topic/443836-pci-compliance-through-sonicwall

    Thanks,

    Arvind

    Thursday, August 28, 2014 7:30 AM

All replies

  • Hi,

    Kindly note the PCI DSS compliance and expanded ISO certification for Windows Azure:

    http://azure.microsoft.com/blog/2014/01/16/announcing-pci-dss-compliance-and-expanded-iso-certification-for-windows-azure-general-availability-of-windows-azure-hyper-v-recovery-manager-and-other-updates-to-windows-azure/

    Also, Azure is Level 1 compliant under the Payment Card Industry (PCI) Data Security Standards (DSS) as verified by an independent Qualified Security Assessor (QSA), allowing merchants to establish a secure cardholder environment and to achieve their own certification.

    You may refer to the discussion in the below web-link:

    http://community.spiceworks.com/topic/443836-pci-compliance-through-sonicwall

    Thanks,

    Arvind

    Thursday, August 28, 2014 7:30 AM
  • Hi Avia,

    Thanks for the post.

    >>>They claim that this is only resolved by temporarily allowing access through our firewall for them to complete the scan. 

    I'm not familiar with the "Trustwave PCI Compliance Scan", however as for you want to change the azure website host server's  firewall settings and accept the IP address of "Trustwave PCI Compliance" scanning vendor. I think that's impossible for azure website service. That because standard azure website share same VM with other standard azure websites of your subscription. Windows azure not provide us a way to change any settings of website VM. If you want to change some settings of VM such as set a firewall rule, I suggest you choose to use Azure cloud service, it allow us customize VMs. Below articles may help you :

    http://blogs.msdn.com/b/tomholl/archive/2013/05/07/using-windows-firewall-to-restrict-access-to-windows-azure-instances.aspx

    http://stackoverflow.com/questions/13233376/lock-down-access-to-azure-vm-to-specific-ip

    Best Regards,

    Fuxiang


    We are trying to better understand customer views on social support experience, so your participation in this interview project would be greatly appreciated if you have time. Thanks for helping make community forums a great place. <br/> Click <a href="http://support.microsoft.com/common/survey.aspx?showpage=1&scid=sw%3Ben%3B3559&theme=tech"> HERE</a> to participate the survey.

    Thursday, August 28, 2014 7:54 AM