Skip to content
This repository has been archived by the owner on Oct 12, 2023. It is now read-only.
/ pci-paas-webapp-ase-sqldb-appgateway-keyvault-oms-AzureRM Public archive

This Azure Security and Compliance Blueprint Automation provides guidance for the deployment of a Payment Card Industry Data Security Standards (PCI DSS 3.2) compliant platform as a service (PaaS) environment suitable for the collection, storage, and retrieval of cardholder data. This solution automates deployment and configuration of Azure resourc

License

MIT license
2 stars 7 forks Branches Tags Activity
Star
Notifications

Azure-Samples/pci-paas-webapp-ase-sqldb-appgateway-keyvault-oms-AzureRM

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

15 Commits

1-click-deployment-nested

1-click-deployment-nested

 
 

artifacts

artifacts

 
 

certificates

certificates

 
 

images

images

 
 

nested

nested

 
 

omsDashboards

omsDashboards

 
 

scripts

scripts

 
 

.gitignore

.gitignore

 
 

0-Setup-AdministrativeAccountAndPermission.md

0-Setup-AdministrativeAccountAndPermission.md

 
 

0-Setup-AdministrativeAccountAndPermission.ps1

0-Setup-AdministrativeAccountAndPermission.ps1

 
 

1A-ContosoWebStoreDemoAzureResources.md

1A-ContosoWebStoreDemoAzureResources.md

 
 

1A-ContosoWebStoreDemoAzureResources.ps1

1A-ContosoWebStoreDemoAzureResources.ps1

 
 

2-EnableOMSLoggingOnResources.ps1

2-EnableOMSLoggingOnResources.ps1

 
 

3-GrantAccessOnDB.sql

3-GrantAccessOnDB.sql

 
 

Azure Security and Compliance Blueprint - PCI-DSS PaaS WebApp Threat Model.tm7.tm7

Azure Security and Compliance Blueprint - PCI-DSS PaaS WebApp Threat Model.tm7.tm7

 
 

CODE_OF_CONDUCT.md

CODE_OF_CONDUCT.md

 
 

LICENSE

LICENSE

 
 

README.md

README.md

 
 

azuredeploy.json

azuredeploy.json

 
 

azuredeploy.parameters.json

azuredeploy.parameters.json

 
 

azuredeploydemo.json

azuredeploydemo.json

 
 

azuresqldeploydemo.json

azuresqldeploydemo.json

 
 

azuresqldevdeploydemo.json

azuresqldevdeploydemo.json

 
 

metadata.json

metadata.json

 
 

pci-faq.md

pci-faq.md

 
 

pci-paas-webapp-ase-sqldb-appgateway-keyvault-oms-master.jpg

pci-paas-webapp-ase-sqldb-appgateway-keyvault-oms-master.jpg

 
 

pci-sample-dataset.md

pci-sample-dataset.md

 
 

Repository files navigation

Azure Solution Blueprint - Payment processing solution for PCI DSS enablement

Description

The Azure blueprint solution is intended to simplify azure adoption, showcase commonly used reference architecture, and teach how to deploy a secure and compliant PaaS solution for customer considering the complexities of storing sensitive payment card related data.

Documentation

All documentation is now avalible on docs.microsoft.com and can be accessed via https://docs.microsoft.com/en-us/azure/security/develop/

Prerequisites

Install Powershell 5.2 version to execute the above scripts. Install VS 2019 to create the web app. Install Git on your system. Git is used to clone the source code locally.

Deploy this solution

This Azure Security and Compliance Blueprint Automation is comprised of JSON configuration files and PowerShell scripts that are handled by Azure Resource Manager's API service to deploy resources within Azure. Detailed deployment instructions are available here.

  1. Review 0-Setup-AdministrativeAccountAndPermission.md and run the provided commands.

  2. Deploy a test solution with Contoso sample data or pilot an initial production environment.

    1A-ContosoWebStoreDemoAzureResources.ps1 This script deploys Azure resources for a demonstration of a webstore using Contoso sample data.

ACKNOWLEDGMENTS and DISCLAIMER

July 2019

This document is for informational purposes only. MICROSOFT MAKE NO WARRANTIES, EXPRESS, IMPLIED, OR STATUTORY, AS TO THE INFORMATION IN THIS DOCUMENT. This document is provided “as-is.” Information and views expressed in this document, including URL and other Internet website references, may change without notice. Customers reading this document bear the risk of using it. This document does not provide customers with any legal rights to any intellectual property in any Microsoft solutions. Customers may copy and use this document for their internal, reference purposes. NOTE: Certain recommendations in this paper may result in increased data, network, or compute resource usage in Azure, and may increase a customer’s Azure license or subscription costs. The solution in this document is intended as a reference architecture pilot and should not be used as-is for production purposes. Achieving PCI compliance requires that customers consult with their Qualified Security Assessor.

This solution was developed cooperatively by Microsoft

Authors of the document

  • Feroskhan Hasenkhan (Microsoft)

About

This Azure Security and Compliance Blueprint Automation provides guidance for the deployment of a Payment Card Industry Data Security Standards (PCI DSS 3.2) compliant platform as a service (PaaS) environment suitable for the collection, storage, and retrieval of cardholder data. This solution automates deployment and configuration of Azure resourc

Resources

Readme

License

MIT license

Code of conduct

Code of conduct
Activity
Custom properties

Stars

2 stars

Watchers

19 watching

Forks

7 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 3

  •  
  •  
  •  

Languages