Conductor and Airwall Edge Service PCI Compliance

The Airwall Conductor and Airwall Edge Services are compliant with PCIDSS guidelines and Payment Card Industry (PCI) data security standards. The Airwall Solution provides secure transport of logs, firewall rules creation and reporting, retention of activity logs, and audit reporting of system configuration changes.

PCI Reporting is enabled by default. You can use it for both PCI compliance and for troubleshooting, as it records when a change was made, who made it, and what the change was.

Note: When PCI Reporting is enabled, PCI logs are kept for 90 days.

To access PCI data in the Conductor

PCI data settings are in the Conductor under Settings > Advanced > Global Airwall settings:
  • To enable or disable PCI reporting – Select Edit Settings, and change the setting for PCI Reporting support.
  • To see PCI reports – In the Global Airwall settings section, next to PCI Reporting, select Downloads to access the PCI Report & References download page.

PCI Compliance Reports

PCI Compliance Reports allow you to see when a change was made, who made it, and what the change was.

Note: When PCI Reporting is enabled, PCI logs are kept for 90 days.

For instructions on how to access these reports, see Conductor and Airwall Edge Service PCI Compliance.

You can download these reports from the PCI Reports and References page. You can cross-reference the reference ID in the User activity report with the IDs in each of the reference reports to get more details:
  • User activity report – Contains when, what was changed, how it was changed (that is, modified, deleted, created, etc), and who changed it. Use the reference ID to look up more details in the reference reports. Includes log ins to the Conductor and authentication through an Airwall Agent or Server.
  • Policy reference – Shows what policies are set, including the overlay the policy is in and the permissions between devices. Gives you a reference for what things on your network can connect with each other.
  • Device reference – Details for changes on Devices.
  • Device group reference – Details for changes on Device groups.
  • Airwall reference – Details for changes on Airwall Edge Services.
  • Airwall group reference – Details for changes on Airwall groups.
  • Overlay network reference – Details for changes on Overlays.
  • Relay rule reference – Details for changes on relay rules.
  • Tag reference – Details for changes on tags.
  • User reference – Details for changes on users.
  • People groups reference – Details for changes on people groups.