STORM has a one click option to help with your PCI compliance. Part of your PCI compliance will be a server scan, this option applies the requires security to pass that vulnerability scan. STORM server are very secure by default but we do not go the full way and make them PCI scan proof by default, this is because lots of clients find this a little too restrictive.
By default, all ports are blocked except for 21 (FTP), 80 (HTTP) and 443 (HTTPS). Following the steps below to set PCI compliance on your STORM server, this will restrict port 21 (FTP) and disable TLS1.0. FTP access will then be restricted to your whitelisted IPs.
First, make sure you have whitelisted your IP address by following our Whitelisting your IP address guide.
From the STORM dashboard, click on Configuration.
Click the Enable button from within the PCI Compliance section.