I was given a list of things that we need to keep track of for PCI compliance, but it's all fairly vague to me, and their PDF explaining what everything is makes it even more vague.
Anybody going through/have already been through this and has any insight as to what logs they want?
PCIReq
MAC Logs
10.2.4 Verify invalid logical access attempts are logged.
10.2.2 Verify all actions taken by any individual with root or administrative privileges are logged.
10.2.7 Verify creation and deletion of system level objects are logged.
10.2.7 Verify creation and deletion of system level objects are logged.
10.2.5.b Verify all elevation of privileges is logged.
10.2.7 Verify creation and deletion of system level objects are logged.
10.2.5.c Verify all changes, additions, or deletions to any account with root or administrative privileges are logged.
10.2.6 Verify the following are logged: Initialization, stopping, or pausing of the audit logs
