Add Ransomware Scorecard questions in bulk
You must first create a CSV file containing the questions and add them to the Ransomware Scorecard using the utility.
This CSV file becomes the master document of record for custom Ransomware questions and answers. It is the key reference for loading the Ransomware questions and mapping their respective answers on the scorecard. Hence, you must preserve it in a working directory for future updates.
To create the CSV file of questions, create a table with headers and format described below and save it as a CSV file (for example questions.csv) in a working directory.
Table: CSV headers to add questions in bulk
QuestionID | Question | Weightage | Description | Recommendation |
|---|---|---|---|---|
Each row under this column header must contain a unique question ID assigned to the question. | Enter the actual Ransomware question. | Enter the numeric value of the weightage assigned to the question. | Enter a brief description or note about the question. | Enter the ideal value or most preferred configuration that is expected as an answer to the question. |
A sample of the CSV file of questions can appear as below:
Table: Example of CSV (questions.csv) to add questions in bulk
QuestionID | Question | Weightage | Description | Recommendation |
|---|---|---|---|---|
QUES001 | Are there processes in place for backups? | 3 | Backups help in restoring lost or corrupt data. | There should be backups in place to recover data loss or corruption. |
QUES002 | Are the passwords encrypted? | 5 | Passwords in the system must be encrypted. | All passwords in the database must be encrypted. |
QUES003 | Is the source code in proper repository? | 2 | The software code in proper repository. | The source code must be protected always. |
QUES004 | Is there a policy to have strong passwords? | 4 | User passwords. | The password policy must compel all users to keep a strong password. |
QUES005 | Is NetBackup Appliance used? | 4 | NetBackup Appliance is safe. | Organizations must use NetBackup Appliance. |
The bulk add utility must be run in SQL Plus as APTARE user.
The load_package utility is located in:
/opt/aptare/database/stored_procedureson Linux\opt\oracle\database\stored_procedureson Windows
To load questions and answer to ransomware score card
- Login to the Portal server.
- At the command line, run:
su -aptare
- At the command line, launch SQL Plus
sqlplus <pwd>/<pwd>@//localhost:1521/scdb
For example:
sqlplus portal/portal@//localhost:1521/scdb
- Run this command at the SQL prompt.
SQL> Execute load_package. loadRswQuestionAnsFile ('domain_name', 'pathname_and_filename','log_path_name', 'log_file_name', 'Type');Where:
domain_name
Name (enclosed in single straight quotes) of the domain in which the host groups and hosts reside.
Example: 'DomainEMEA'
pathname_and_filename
Full path + filename (enclosed in single straight quotes) of the CSV file.
Windows Example: 'c:\temp\questions.csv'
Linux Example: '/tmp/questions.csv'
log_path_name
Full path (enclosed in single straight quotes) where the log file will be created/updated; verify that you have write access to this directory.
Optional: If a log path and filename are not specified, log records are written to
scon.logandscon.err. To omit this parameter, enter: 'c:\temp' or '/tmp'log_file_name
Log file name enclosed in single straight quotes.
Optional: If a log path and filename are not specified, entries are written to
scon.logandscon.err.To omit this parameter, enter: 'questions.log'
type
'Questions' for loading the questions in bulk.
Example:
SQL> load_package.loadRswQuestionAnsFile ('INSTALLWIN2012','/tmp/questions.csv','/tmp', 'questions.log','Questions'); - Check the log file for status and errors.
- Restart the Portal services so that the newly added questions are available in Ransomware Scorecard.
- Verify that the bulk adding of questions was successful: In the Portal, go to Reports > Ransomware -> Ransomware Scorecard.