Case Study: Large Retail Chain achieves PCI DSS compliance and secure Active Directory with One Identity

Retail Chain Ensures PCI DSS Compliance

Large Retail Chain Organization faced the challenge of passing annual PCI DSS audits and securing a complex retail IT environment that included roughly 4,000 POS endpoints plus back-office systems. The company needed enterprise-grade log collection, cost‑effective long‑term storage, and advanced Active Directory monitoring and change auditing. To meet those needs they turned to One Identity, using Quest solutions such as InTrust, Active Roles and Change Auditor.

One Identity implemented InTrust to centrally collect and highly compress logs (about 800 GB of logs on hand) from POS devices, servers and syslogs, enabling cost‑effective retention for PCI DSS and fast indexed searches and real‑time alerts. Active Roles and Change Auditor enforced consistent AD policies, enabled granular delegation for a dozen admins, and protected administrative objects from unauthorized changes. As a result One Identity helped the retailer pass PCI DSS audits, reduce storage and bandwidth needs with ~20:1 compression, speed investigations and auditing, save administrator time, and block attacks on critical AD accounts.