Note
Access to this page requires authorization. You can try signing in or changing directories.
Access to this page requires authorization. You can try changing directories.
This document provides a mapping of AKS controls and documentation to PCI DSS 4.0.1 requirements, including customized approaches where applicable.
AKS PCI DSS 4.0.1 requirement mapping matrix
| PCI DSS 4.0.1 requirement | AKS control | Customized approach |
|---|---|---|
| MFA for admin access | Enhanced MFA implementation | Yes (if using Azure AD Conditional Access) |
| Continuous monitoring | Continuous security and monitoring | No |
| Key management | Cryptography and key management | No |
| Third-party management | Third-party and supply chain security | No |
| Security awareness | Security awareness and training | No |
Integrated AKS security context
You should leverage the requirement mapping matrix as part of a broader security strategy that includes:
- Security policies for policy and governance.
- Identity and access management for identity and access management.
- Monitoring and logging for monitoring and alerting.
Related resources
For more information, review the official PCI DSS 4.0.1 documentation.
For the latest AKS security features, see the Azure Kubernetes Service (AKS) documentation.