tentools

0.0.14

public/Import-TNAudit.ps1

                                function Import-TNAudit {

    <#

    .SYNOPSIS

        Imports audit files

    .DESCRIPTION

        Imports audit files

    .PARAMETER SessionObject

        Optional parameter to force using specific SessionObjects. By default, each command will connect to all connected servers that have been connected to using Connect-TNServer

    .PARAMETER FilePath

        The path to the audit file

    .PARAMETER NoRename

        By default, this command will remove "Imported Nessus Policy - " from the title of the imported file. Use this switch to keep the whole name "Imported Nessus Policy - Title of Policy"

    .PARAMETER Create Policy

        Create corresponding policy

    .PARAMETER EnableException

        By default, when something goes wrong we try to catch it, interpret it and give you a friendly warning message.

        This avoids overwhelming you with 'sea of red' exceptions, but is inconvenient because it basically disables advanced scripting.

        Using this switch turns this 'nice by default' feature off and enables you to catch exceptions with your own try/catch.

    .EXAMPLE

        PS C:\> Get-ChildItem C:\temp\portal_audits\DISA*v2r1* -Recurse  | Import-TNAudit

        Imports all .audit files matching DISA v2r2

#>

    [CmdletBinding()]

    param

    (

        [Parameter(ValueFromPipelineByPropertyName)]

        [object[]]$SessionObject = (Get-TNSession),

        [Parameter(Mandatory, ValueFromPipelineByPropertyName)]

        [Alias("FullName")]

        [ValidateScript( { Test-Path -Path $_ })]

        [string[]]$FilePath,

        [switch]$CreatePolicy,

        [switch]$EnableException

    )

    process {

        foreach ($session in $SessionObject) {

            $PSDefaultParameterValues["*:SessionObject"] = $session

            if (-not $session.sc) {

                Stop-PSFFunction -EnableException:$EnableException -Message "Only tenable.sc supported" -Continue

            }

            if ($CreatePolicy) {

                $template = Get-TNPolicyTemplate -Name 'SCAP and OVAL Auditing'

            }

            $files = Get-ChildItem -Path $FilePath

            foreach ($file in $files.FullName) {

                $body = $file | Publish-File -Session $session -EnableException:$EnableException -Type Audit

                $params = @{

                    SessionObject = $session

                    Method        = "POST"

                    Path          = "/auditFile"

                    Parameter     = $body

                    ContentType   = "application/json"

                }

                Invoke-TnRequest @params | ConvertFrom-TNRestResponse -Outvariable auditfile

                if ($CreatePolicy -and $auditfile) {

                    $preparams = @{

                        name           = $auditfile.Name

                        description    = $auditfile.Description

                        policyTemplate = @{ id = $template.id }

                        auditFiles     = @(@{ id = $auditfile.id })

                    }

                    $json = ConvertTo-Json -InputObject $preparams -Compress

                    $params = @{

                        SessionObject = $session

                        Path          = "/policy"

                        Method        = "POST"

                        ContentType   = "application/json"

                        Parameter     = $json

                    }

                    $null = Invoke-TNRequest @params

                }

            }

        }

    }

}