Case Study: Large Retail Chain achieves PCI DSS compliance and enterprise-wide AD security with Quest

Retail Chain Ensures PCI DSS Compliance

A large U.S. retail chain faced a critical compliance and security challenge: to pass annual PCI DSS audits it had to collect and retain a complete year’s worth of log data from a complex retail IT environment — including roughly 4,000 POS endpoints — and also tighten protection and change auditing for its Active Directory to guard against external attacks, insider errors and administrative mistakes.

The retailer deployed Quest InTrust to centrally collect, index and store logs (using 20:1 compression to keep roughly 800 GB of compressed data manageable) and implemented One Identity Active Roles plus Quest Change Auditor to enforce consistent AD policies, delegate administration securely and protect critical accounts. The combined solution delivered fast searches, canned reports and real-time alerts, enabling the company to meet PCI DSS retention and audit requirements, streamline admin workflows, improve AD security, and reliably block unauthorized changes.