Question 2 - Adobe AD0-E708 Real Exam Questions [March 2026 Update]

Q: 2

You are managing a website which has 50 Magento admin users. To comply with PCI compliance standards, you are tasked with implementing strong access control measures to restrict access to customer information. Which Magento feature will help you accomplish this task?

Options

Correct Answer:

Explanation

The most effective Magento feature for implementing strong, granular access control for admin users is Role resources. This feature allows administrators to create different user roles (e.g., "Customer Service," "Marketing," "Fulfillment") and assign specific permissions to each. By customizing resource access for each role, you can ensure that users only have access to the information and functions essential for their job, such as restricting access to sensitive customer data. This directly addresses the principle of least privilege, a core requirement of PCI DSS.

Why Incorrect

A. reCaptcha: This feature is designed to protect the website from spam and abuse by bots, typically on login or form submission pages. It does not control permissions for authenticated admin users.

C. Action logs: This is an auditing feature that records actions performed by admin users. While crucial for monitoring and PCI compliance (Requirement 10), it does not restrict or prevent access; it only reports on it after the fact.

D. IP address whitelisting: This security measure restricts access to the entire Admin panel based on the user's IP address. It does not provide granular control over what a logged-in user can see or do within the Admin.

References

1. Adobe Commerce User Guide

"User Roles": "The role determines which users can see and do in the Admin. When you create a role

you can select the specific Admin resources that are available to users who are assigned to the role." This directly supports the use of Role resources for access control.

Source: Adobe Experience League. Adobe Commerce User Guide

"Permissions".

2. Adobe Commerce User Guide

"Action Log Report": "The Action Log Report provides a detailed record of all actions that have been performed by administrators... The Action Log is a tool that you can use to audit the activities of administrators who work in your store." This confirms that Action Logs are for auditing

not access restriction.

Source: Adobe Experience League. Adobe Commerce User Guide

"Action Log Report".

3. PCI Security Standards Council

"Payment Card Industry (PCI) Data Security Standard v4.0": Requirement 7

"Restrict Access to System Components and Cardholder Data by Business Need to Know

" states the need to limit access rights for privileged user IDs to the least privileges necessary to perform job responsibilities. Magento's Role resources feature is the primary mechanism to achieve this.

Source: PCI Security Standards Council. PCI DSS v4.0

Requirement 7

page 121.

Premium Access Includes

FLASH OFFER

avail 10% DISCOUNT on YOUR PURCHASE