Rule: Backup Recovery Points Manual Deletion Disabled
This rule specifies that manual deletion of backup recovery points should be disabled.
| Rule | Backup recovery points manual deletion should be disabled |
| Framework | CISA-cyber-essentials |
| Severity | ✔ Medium |
Rule Description
The rule requires disabling the ability to manually delete backup recovery points for CISA (Cybersecurity and Infrastructure Security Agency) Cyber Essentials compliance. Disabling this feature ensures that essential recovery points are not accidentally or intentionally deleted, maintaining the integrity and availability of backup data.
Troubleshooting Steps
If you encounter any issues related to manual deletion of backup recovery points, follow these troubleshooting steps:
- 1.
Verify Permissions: Ensure that the user attempting to delete the recovery points has the necessary permissions to perform such actions. Check if the user has the required access rights to modify or delete backup recovery points.
- 2.
Check Backup Software Settings: Verify the settings in your backup software to determine if there are any configurations that may be causing issues with manual deletion. Ensure that the software is set to adhere to the CISA Cyber Essentials compliance requirements.
- 3.
Consult Documentation: Refer to the documentation provided by your backup software vendor for troubleshooting specific errors or issues related to the manual deletion of recovery points. They may provide specific instructions or known resolutions for common problems.
- 4.
Contact Support: If the issue persists, reach out to your backup software vendor's support team for further assistance. Provide them with detailed information regarding the error messages or behavior you are experiencing for a more focused troubleshooting process.
Necessary Codes
No specific codes are required for this rule.
Remediation Steps
To disable manual deletion of backup recovery points for CISA Cyber Essentials compliance, follow these step-by-step remediation steps:
- 1.
Identify Backup Software: Determine the backup software or solution being used in your organization. This could be a dedicated backup software, cloud-based backup service, or a built-in backup feature of your operating system.
- 2.
Access Backup Software Settings: Depending on the backup software you are using, locate the settings or configuration options. This is typically found within the backup software's user interface.
- 3.
Locate Backup Recovery Point Settings: Within the settings, find the section or option related to backup recovery points. Look for configurations related to deleting or modifying recovery points manually.
- 4.
Disable Manual Deletion: Disable the option or setting that allows manual deletion of backup recovery points. This may be a toggle switch, checkbox, or a specific configuration parameter that needs to be modified.
- 5.
Save and Apply Changes: After disabling manual deletion, save and apply the changes to ensure they take effect.
- 6.
Test Backup Recovery Point Management: Validate the changes made by attempting to delete a recovery point manually. The software should prevent the deletion and return an error message or prompt indicating the action is not permitted.
- 7.
Document Changes: Keep a record of the changes made to the backup software settings for future reference or compliance audits.
By following these steps, you will have successfully disabled the ability to manually delete backup recovery points for CISA Cyber Essentials compliance. This ensures that essential recovery points remain intact and accessible for data restoration purposes.