STORM has a one click option to help with your PCI compliance. Part of your PCI compliance will be a server scan, this option applies the requires security to pass that vulnerability scan. STORM server are very secure by default but we do not go the full way and make them PCI scan proof by default, this is because lots of clients find this a little too restrictive.
By default, all ports are blocked except for 21 (FTP), 80 (HTTP) and 443 (HTTPS). Following the steps below to set PCI compliance on your STORM server, this will restrict port 21 (FTP) and disable TLS1.0. FTP access will then be restricted to your allowed IPs.
First, make sure you have added your IP address to the servers allowed IP list by following our guide on how to Add your IP to the servers Allows IP List.
From the STORM dashboard, click on Configuration.
Click the Enable button from within the PCI Compliance section.