VMware Live Cyber Recovery is now compatible with compliance hardening requirements for Payment Card Industry Data Security Standard (PCI DSS).

VMware Live Cyber Recovery compliance hardening uses a shared accountability model that distributes security and compliance responsibilities among AWS, VMware, and you the customer. Read the VMware Live Cyber Recovery shared responsibility document for supplemental guidance covering the responsibilities and ownership of compliance hardening functions in VMware Live Cyber Recovery.

As part of your shared responsibility, you should harden your recovery SDDC for PCI DSS Compliance. For more information, see Configure SDDC Compliance Hardening.

You can also configure IP address access lists in VMware Live Cyber Recovery to help you achieve PCI DSS compliance.

Access lists allow you to control access from the Cyber Recovery connector to the cloud file system and the Orchestrator, and control which users can access the VMware Live Cyber Recovery UI.

If you have PCI DSS enabled in your environment and you do not add VMware Live Cyber Recovery component IP addresses to the access list, you will not be able access VMware Live Cyber Recovery.
Note: If you need PCI hardening for your recovery SDDC, contact VMware Support for assistance.