Importing SCAP content

To create an SCAP Benchmark object that you can use in an SCAP Compliance Job, you import Security Content Automation Protocol (SCAP) content into the BMC Server Automation Console.

Before you begin

Before importing SCAP content, ensure that you have prepared the folder that contains this content:

  • For SCAP 1.2 content, do not store the content files in your root drive. For best results, keep the content files all together in a single folder, and do not store any other (irrelevant) files or folders in this folder.
  • For SCAP 1.0 content, ensure that all SCAP content files that are referenced by the XCCDF file are in the same folder as the XCCDF file.

For information, see Obtaining SCAP content.

To import SCAP 1.2 content

  1. Right-click a folder under the Depot folder, and select New > SCAP 1.2.
  2. The SCAP Content wizard starts. Provide information in the wizard panels as follows:
  3. Click Finish.
    The import process runs in the background.
    If the import is successful, a new SCAP collection object appears in the BMC Server Automation Console. You can expand the SCAP collection object to see its child SCAP data stream objects. You can then expand an SCAP data stream object to display its child SCAP benchmark objects.
    Validation errors are written to the BMC Server Automation Application Server log.

To import SCAP 1.0 content

  1. Right-click a folder under the Depot folder, and select New > SCAP 1.0.
  2. The SCAP Benchmark wizard starts. Provide information in the wizard panels as follows:
  3. Click Finish.
    The import process runs in the background. If the import is successful, the new SCAP benchmark object appears in the BMC Server Automation Console.
    Validation errors are written to the BMC Server Automation Application Server log.

Where to go from here

After completing the import, you might want to perform the following actions:

  • Open the Application Server log and check for validation errors that were detected during the import. For more information, see Viewing SCAP schema errors.
  • Open imported SCAP objects and view a summary of details for each object. For more information, see Viewing imported SCAP objects.
  • Generate an Open Checklist Interactive Language (OCIL) Results file for association with SCAP 1.2 content. The OCIL Results file contains server-specific answers to the questions in an OCIL Input file (or OCIL questionnaire). The OCIL Input file is either imported to the depot within a benchmark or you can add a standalone OCIL Input file to the depot manually. For more information, see Generating an OCIL Results file.

You can now proceed to perform an SCAP compliance analysis based on the imported SCAP benchmark by creating an SCAP Compliance Job.

Was this page helpful? Yes No Submitting... Thank you

Comments