In this video, John Martinez shows how this policy ensures that an administrator approval is needed before updates are performed on the cardholder table, avoiding such attacks.
This policy requires approval to update a record in the cardholder table on any PCI-tagged resource, including databases.
Let’s go ahead and connect to the database.
I’m being prompted for MFA by a different policy. Now I’m connected to the database.
Next, I’ll update the table.
I’m now prompted to approve the action. I’ll approve it from Slack.
Once approved, the update is applied successfully.
