The Payment Card Industry Data Security Standard (PCI-DSS) defines a set of security standards designed to protect cardholder data during payment card transactions. NAC is an essential technology when it comes to meeting PCI-DSS security requirements.


Portnox directly supports PCI-DSS security requirements.

Requirement 1

Install and maintain a firewall configuration to protect cardholder data.

Portnox can complement firewall technologies by enforcing access control policies, ensuring that only authorized devices and users can access the cardholder data environment (CDE).

Requirement 2

Do not use vendor-supplied defaults for system passwords and other security parameters.

Portnox can enforce endpoint compliance by verifying that devices meet security standards and have proper configurations before granting access to the network.

Requirement 4

Encrypt transmission of cardholder data across open, public networks.

Portnox can help ensure that only authorized and compliant devices can access the network, reducing the risk of unauthorized access and potential eavesdropping on cardholder data transmissions.

Requirement 5

Protect all systems against malware and regularly update antivirus software or programs.

The Portnox Cloud integrates with antivirus systems and enforce compliance by verifying the presence and up-to-date status of antivirus software on devices attempting to access the network.

Requirement 7

Restrict access to cardholder data by business need-to-know.

Portnox can enforce granular access controls based on user roles and device posture, allowing only authorized individuals and devices to access specific segments of the network that contain cardholder data.

Requirement 8

Identify and authenticate access to system components.

Portnox plays a role in user authentication by integrating with identity and access management (IAM) systems, ensuring that only authenticated users and devices are granted access to the CDE.

Requirement 9

Track and monitor all access to network resources and cardholder data.

The Portnox Cloud provide detailed logs and audit trails of user and device activities, helping to monitor and track access to sensitive resources, and generate alerts or reports for suspicious activities.

endpoint remediation portnox

Keep all of your endpoints in a healthy state of compliance.

Every endpoint connected to your network represents a potential entry point for a cybercriminal. With automated endpoint remediation from the Portnox Cloud, you can rest easy knowing all your users’ devices are compliant with your risk policies, and that common device vulnerabilities are eliminated.

Frequently asked questions about PCI-DSS security & compliance.

Try Portnox Cloud for Free Today

Gain access to all of Portnox's powerful zero trust access control free capabilities for 30 days!