Moneris PCI Scan Requirements

If you are a Moneris customer, you may be required by your gateway to submit proof of PCI Compliance.  Typically, this includes a completed PCI Self Assessment Questionnaire, as well as Certificate of Compliance provided by a PCI Approved Scanning Vendor.

You can download the PCI Self Assessment Questionnaire from the PCI web site at the following address:

https://www.pcisecuritystandards.org/saq/instructions_dss.shtml#instructions

For your reference, you may download the current digitally signed Certificate of Compliance using the link below.

http://edge.ultracart.com/pci-compliance-current.pdf

If Moneris requires that you have a Certificate of Compliance that includes your company name rather than UltraCart's, you will need to purchase PCI scanning services of your own.

UltraCart recommends HackerGuardian, a service provided by Comodo CA Ltd., a PCI Approved Scanning Vendor.   For more information about their offerings, please visit their website at www.hackerguardian.com.

Once you have signed up, you will need to specify the internet addresses of the servers you use to operate your online store.  Typically, this will include your hosting server, your e-mail server, and one or more UltraCart front-end servers.  For merchants who do not have a Custom SSL certificate, you should specify the address of 64.156.10.131 for your secure shopping cart server address.  If you have a Custom SSL certificate on your account, please contact UltraCart Support at (209) 383-9870 for assistance in determining your secure shopping cart server address.