Which requirement ensures actions taken by root or administrative privileges are logged?

Unlock all questions

This demo includes only 20 questions. Upgrade to access hundreds of questions, flashcards, exam simulations, and disable ads.

Full question bankExam simulationsFlashcards
From $24.99Unlock all

Prepare for the PCI DSS Test with detailed questions and explanations. Use flashcards and quizzes to enhance knowledge. Ensure you're ready for your certification exam!

Multiple Choice

Which requirement ensures actions taken by root or administrative privileges are logged?

Explanation:
The main idea is ensuring privileged activity is auditable for accountability and security. When someone has root or administrative access, their actions can have a large impact on systems and data, so every action they take should be logged to create a verifiable trail of who did what, when, and from where. This supports detecting misuse, validating that changes are authorized, and meeting PCI DSS expectations around monitoring access to critical resources. Logging only login events misses what happens after login—for privileged users, the commands run, configurations changed, files accessed, and other actions are what matter. Logging non-privileged user activity doesn’t cover privileged accounts, which are the focus here. And not monitoring privileged accounts at all would leave a critical blind spot, defeating the purpose of thorough auditing.

The main idea is ensuring privileged activity is auditable for accountability and security. When someone has root or administrative access, their actions can have a large impact on systems and data, so every action they take should be logged to create a verifiable trail of who did what, when, and from where. This supports detecting misuse, validating that changes are authorized, and meeting PCI DSS expectations around monitoring access to critical resources.

Logging only login events misses what happens after login—for privileged users, the commands run, configurations changed, files accessed, and other actions are what matter. Logging non-privileged user activity doesn’t cover privileged accounts, which are the focus here. And not monitoring privileged accounts at all would leave a critical blind spot, defeating the purpose of thorough auditing.

More Multiple Choice Questions
Subscribe

Get the latest from Examzify

You can unsubscribe at any time. Read our privacy policy