Before you start the deployment procedure, make sure that physical servers meet the Hardware and Software Requirements, listed in the section above.
According to Requirements 3.4, 3.5 and 3.6 of PCI DSS, the deployment scheme with 3 nodes (physical servers or virtual environments) is intended:
At least 3 servers are needed:
-
Billing Database server: the node where Billing database is deployed; accessible only from Billing application server over back-network (private IP address).
Note: You can also use cloud PostgreSQL solutions such as Azure Database for PostgreSQL.
- Billing Application server: the node where Billing core is installed.
- Billing Online Store server: the node where Billing online store is deployed.
Encryption
In order to make Billing installation compliant with PCI DSS requirements, an encryption service is needed. Billing supports RSA encryption. The RSA service is used for RSA keys generation, storage, and data encryption. RSA encryption is applied to payment methods data. The RSA encryption module is installed automatically; you cannot process credit cards until the encryption has been enabled through Billing graphical interface.