Release Notes

Red Hat Insights 1-latest

Release Notes for Red Hat Insights

Red Hat Insights Documentation Team

Abstract

These release notes highlight the latest features and improvements implemented in the Red Hat Insights application and services.
Red Hat is committed to replacing problematic language in our code, documentation, and web properties. We are beginning with these four terms: master, slave, blacklist, and whitelist. Because of the enormity of this endeavor, these changes will be implemented gradually over several upcoming releases. For more details, see our CTO Chris Wright's message.

Chapter 1. About Red Hat Insights

Red Hat Insights is a Software-as-a-Service (SaaS) application included with almost every subscription to Red Hat Enterprise Linux, Red Hat OpenShift, and Red Hat Ansible Automation Platform.

Powered by predictive analytics, Red Hat Insights gets smarter with every additional piece of intelligence and data. It can automatically discover relevant insights, recommend tailored, proactive, next actions, and even automate tasks. Using Red Hat Insights, customers can benefit from the experience and technical knowledge of Red Hat Certified Engineers, making it easier to identify, prioritize and resolve issues before business operations are affected.

As a SaaS offering, located at Red Hat Hybrid Cloud Console, Red Hat Insights is regularly updated. Regular updates expand the Insights knowledge archive in real time to reflect new IT challenges that can impact the stability of mission-critical systems.

Chapter 2. March 2024

2.1. Product-wide updates

2.1.1. Published blogs and resources

2.1.2. Integrations

Integration blogs and demos now centralized in a Knowledgebase article

A new Red Hat Knowledgebase article, Red Hat Insights Integrations, provides a centralized location where you can find all blogs and demos about the integrations that Insights provides examples for or supports.

2.2. Red Hat Insights for Red Hat Enterprise Linux

2.2.1. Advisor

New Advisor Recommendations

Nine new recommendations are available:

2.2.2. Inventory

Custom Staleness and Deletion

System administrators can use Custom Staleness and Deletion settings to configure the number of days systems need to be inactive, before Red Hat Insights considers the systems to be stale and flags them for removal from your inventory.

By default, when a system does not communicate with Red Hat within one day, the system is labeled as stale. If the system does not communicate within 7 days, it is labeled as stale warning. If the system does not communicate within 14 days, Insights removes it from the inventory. With this feature update, your system administrators can change settings for:

  • system staleness up to 7 days
  • system stale warning up to 180 days
  • system deletion up to 2 years

shows staleness and deletions options in the inventory service

The feature is now available in Inventory > System Configuration > Staleness and Deletion.

For more information about roles and permissions needed to manage system staleness and deletion, see Managing system staleness and deletion with Red Hat Insights for Red Hat Enterprise Linux in Viewing and managing system inventory.

Identifying CentOS hosts that are compatible for pre-conversion and conversions

When viewing hosts within the Insights inventory, if a CentOS 7 host is registered to Insights and compatible to run a Pre-Conversion analysis or Conversion task, you will see a visual indicator that reads “Convert system to RHEL” below the system name when looking at your systems.

shows highlighted note

2.3. OpenShift Container Platform

2.3.1. Advisor

Insights Advisor for Workloads available in preview

A preview version of Insights Advisor for Workloads application is available. Insights Advisor for Workloads uses Deployment Validation Operator (DVO) to provide recommendations on best practices and security policies around deployments of workloads. The application helps avoid issues such as misconfigured workloads, which can cause the platform to suffer from memory or CPU overcommitment, resulting in critical cluster issues.

To test the preview version of the new application, see Red Hat Hybrid Cloud Console > RHEL > Insights > Advisor > Workloads

Deployment Validation Operator (DVO) available to on-premise clusters

DVO, formerly available only to Red Hat Managed offerings, is now generally available. The operator serves as an in-cluster workload configuration evaluation tool. Using Red Hat Insights, the tool reports misconfigurations of workloads to Red Hat.

You can access and install the tool from the Red Hat ecosystem catalog.

Chapter 3. February 2024

3.1. Product-wide

3.1.1. Published Blogs and Resources

3.2. Red Hat Insights for Red Hat Enterprise Linux

3.2.1. Advisor

New Recommendations

The following new recommendations were added in February:

  • RHEL guest randomly crashes on Azure with accelerated networking device hot-plug/hot-unplug
  • Kernel memory leak occurs when using RDMA on NFS mounts due to a known bug in the kernel
  • Decreased security when "UsePAM" is disabled in the sshd configuration
  • Decreased stability when the feature of automatically adding transient devices back into an existing MD array is not enabled

3.3. OpenShift Container Platform

3.3.1. Advisor

Deployment Validation Operator (DVO) certified and available to on-premise customers

DVO, previously released only to Red Hat managed clusters, is now certified and available for on-premise usage. Deployment validation helps platform operators understand how workloads have been misconfigured and provides guidance around best practices, security, and other workload settings.

Chapter 4. January 2024

4.1. Product-wide

4.1.1. Published Blogs and Resources

4.2. Red Hat Insights for Red Hat Enterprise Linux

4.2.1. Advisor

New Recommendations

During January, the team made four releases, introducing 14 brand new recommendations in Advisor, mostly focused on remediating risks in the kernel.

  • Kernel crash occurs when NULL pointer dereference occurs in the vmxnet3 NIC driver on VMware ESXi hosts, due to a known bug in the kernel
  • The root filesystem is mounted in read-only mode after reboot when there is a mount point name that ends with a space
  • Kernel panic occurs when the CIFS file systems are mounted with FQDN, due to a known kernel bug
  • Kernel panic occurs with the Transparent Huge Page (THP) enabled, due to a known kernel bug
  • The system with a separate /usr file system and systemd-219-78.el7_9.8 package installed cannot boot after the initramfs is regenerated
  • Memory leak occurs when the number of orphan session scopes is large, due to a bug in systemd
  • System hang occurs with lockups when using smartpqi driver, due to a known kernel bug
  • Logs cannot be collected when the symbolic link /dev/log is missing
  • NFS4 client can become unresponsive when the server side restarts, due to a bug in kernel
  • Satellite will become unresponsive after the noon, due to long-running and failing CertificateCleanupJob in candlepin
  • NFS4 server runs into infinite loop with NFS4ERR_DELAY reply, due to a regression bug in kernel
  • Boot failure occurs due to the absence of critical kernel modules
  • Samba cannot work with sssd as expected when winbind service is not running
  • The httpd service is unable to create a thread when the memory or nproc resource is not enough

4.3. OpenShift Container Platform

4.3.1. Cost Management for ARM, POWER and IBM Z

The Cost Management Metrics Operator is now available for ARM, POWER and IBM Z, in addition to the existing x86-64 support. This makes Red Hat Insights cost management the first FinOps tool to be available for POWER, and the second for IBM Z.

4.3.2. Custom platform costs

Customers can now add custom OpenShift projects to the Platform cost group, which will add to the default OpenShift and Kubernetes control plane projects. This is useful for cross-platform services, such as login microservices, PDF generation services, and so on, that are used by many tenants in the cluster.

Chapter 5. December 2023

5.1. Product-wide

5.1.1. Published Blogs and Resources

5.2. Red Hat Insights for Red Hat Enterprise Linux

5.2.1. Advisor

New Recommendations

Six new recommendations are available in Advisor:

5.2.2. Image Builder

RHEL lifecycle visualization available in Image Builder

You can now see a visualization of the RHEL 8 and RHEL 9 support lifecycle in Image Builder. When you select RHEL 8 for your image build, you will see a visualization that shows you how much time is left to receive full support for RHEL 8 and 9. Full support for RHEL 8 is ending in 2024. You can select RHEL 9 to receive full support through 2027.

timeline of RHEL 8 and 9 full support and maintenance lifecyles

Chapter 6. November 2023

6.1. Red Hat Hybrid Cloud Console

6.1.1. Published blogs and resources

Red Hat Insights offers timely blogs and other resources to supplement our official documentation.

6.2. Red Hat Insights for Red Hat Enterprise Linux

6.2.1. Insights Client/RHC

End of Life for Basic Authentication for Insights client

Effective February 29th, 2024, the insights-client will no longer support Basic Authentication (authmethod=basic) as an option for connecting a host with Red Hat Insights. For more information, and guidance about how to switch to alternative options, see the Red Hat Insights lifecycle and update page.

6.2.2. Conversions

CentOS 7 pre-conversion analysis and conversion experience launched

On June 30, 2024, CentOS Linux 7 will reach End of Life (EOL), requiring users to migrate to a new operating system to continue receiving updates, security patches and new features. As this date rapidly approaches, determining a path for migration and scope will be key as you work to assign resources and meet completion dates. With a recent update to Red Hat Insights, CentOS 7 users can now:

  • Register CentOS Linux 7 systems to display in the Insights inventory list.
  • Start a new pre-conversion task at Automation Toolkit > Tasks > Pre-conversion analysis for converting to RHEL to analyze selected CentOS Linux 7 systems, and receive remediation advice so you can proactively handle issues that could complicate or prevent conversion to RHEL.
  • Run a new conversion task at Automation Toolkit > Tasks > Convert to RHEL from CentOS Linux 7 after you resolve issues identified by the pre-conversion analysis to complete the conversion to RHEL.

Example of output from running a conversion task in Insights

Shows output messages about systems after running a conversion task in Insights

You can find all Insights tasks at Automation Toolkit > Tasks.

You can learn more about these new features and get started with:

6.2.3. Advisor

New recommendations released

Fourteen new recommendations are available:

New InterSystems topic

Red Hat Insights currently has ten Advisor recommendations available for the InterSystems workload. You can find the InterSystems recommendations in a new Advisor topic at Advisor > topics > Intersystems on the Red Hat Hybrid Console. Insights will continue to add InterSystems-focused recommendations to this new topic. To see all Advisor topics, go to Advisor > topics.

6.2.4. Patch

Improved patch reporting for Satellite-managed hosts

You can now check in Satellite-managed hosts with a new –build-packagecache flag for better reporting of installable updates. With the flag set, the host will self-report the list of updates that should be installed based on the content available in the Satellite content view to which that system is subscribed. You can find more information in:

6.2.5. Subscriptions

Support for new Red Hat Enterprise Linux variants in Subscriptions

The subscriptions service now supports reporting for the following Red Hat Enterprise Linux variants on x86:

  • Red Hat Enterprise Linux for SAP
  • Red Hat Enterprise Linux Extended Update Support (EUS) Add-On
  • Red Hat Enterprise Linux High Availability Add-On
  • Red Hat Enterprise Linux Resilient Storage Add-On
  • Red Hat Enterprise Linux Extended Life Cycle Support (ELS) Add-On (On-Demand)

6.2.6. Image Builder

Known issue: Insights image builder fails to build RHEL for Edge images when npm is included

When building RHEL 8 images within Insights image builder, you cannot customize your RHEL for Edge image with the npm package. The NPM package manager expects its configuration to be in the {prefix}/etc/npmrc directory but the npm RPM packages a symlink in the /usr/etc/npmrc directory that links to /etc/npmrc. To work around this problem, include the npm package inside of the OSTree system.

Insights image builder now supports building images for the aarch64 architecture

This enhancement to image builder extends support to the aarch64 architecture, which allows you to select the architecture that you want to build. The compatible target images that you can build for the aarch64 architecture are Amazon Web Service (AWS), Bare Metal, and Guest Images.

Support to build images suitable for Windows Subsystem Linux (WSL)

You can use the Red Hat Insights image builder to create an image suitable for Windows Subsystem Linux (WSL). You can use that image to run a Linux environment directly on your Windows machine. You can use most of the command-line tools, utilities, and applications. The kernel is supplied by Microsoft, and developed on WSL2-Linux-Kernel. This is supported only for the Red Hat Enterprise Linux (RHEL) 8 release. For more information, see Create customized RHEL images for the WSL environment.

6.3. Red Hat Insights for OpenShift

6.3.1. Advisor

Advanced Cluster Manager 2.9 fleet Insights integration

Red Hat Advanced Cluster Manager (ACM) 2.9 has introduced a new overview dashboard, and detailed views that improve navigation, when viewing critical information emitted by OpenShift Container Platform clusters. This revamped experience is similar to the one that Red Hat’s Site Reliability Engineering (SRE) team uses to manage Red Hat clusters.

6.3.2. Cost Management

Security-focused Frequently Asked Questions (FAQ) published

Red Hat Insights cost management service uses its own operator (Cost Management Metrics Operator), to gather and upload data to Red Hat. The data is then processed in its own data pipeline. As a result, there are some differences related to what data is collected, how it is processed and stored. A Frequently Asked Questions (FAQ) article about Cost Management security is available to help answer your questions regarding how the operator handles this data. You can find the FAQ at Cost Management Software as a Service [SAAS]-Security FAQ.

Support for new service account authentication

Project Koku, the upstream of Red Hat Insights cost management, released the Koku Metrics Operator version 3.1.0. This adds support for token-based service authentication, for service accounts in the Hybrid Cloud Console.

Insights expects to release the downstream Cost Management Metrics Operator version 3.1.0 with the upcoming delivery of token-based authentication on the Hybrid Cloud Console.

Chapter 7. October 2023

7.1. Red Hat Hybrid Cloud Console

7.1.1. General

Sources and Integrations UI Overhaul

To simplify the user experience and consolidate services, sources and integrations have now been combined into Integrations. You can now connect all integrations (for example, external AWS cloud integration, Slack integration, and so on) in a single place.

Notifications UI Refresh

Previously, notifications were grouped by product family. The notifications service now offers an Overview landing page as a single place to configure all events, as well as a separate page to view events.

7.2. Red Hat Insights for Red Hat Enterprise Linux

7.2.1. Published Blogs & Resources

7.2.2. Inventory

Inventory Groups now available

The Inventory Groups feature enables you to set permissions on specific inventory objects, such as inventory groups and systems. You can organize systems inventory into different groups, as well as restrict access to specific users for each group. Once you configure user access, those system permissions take effect across all Insights services.

img relnotes 102023 inventory

For more information about configuring inventory groups, refer to Viewing and managing system inventory.

7.2.3. Advisor

New recommendations added

  • The performance of InterSystems IRIS server may be impacted when Transparent Huge Pages is enabled.
  • Apply hugepages recommendation for better performance of InterSystems IRIS.
  • Apply shmmax recommendation for better performance of InterSystems IRIS.
  • Degraded DNS performance on RHEL 8.5 when Ethernet Controller X710 for 10GbE SFP+ with i40e driver is used.
  • The tuned does not start automatically when the OS boots with graphical target mode.
  • System hangs due to a known kernel bug in the e1000e driver.
  • Application failure occurs when the consumption of file descriptors reaches limit.
  • The chrony service cannot resolve NTP server’s hostnames when it does not have the read permission to the /etc/resolv.conf file.
  • The sendmail service rejects or queues emails when the system load is high.

7.2.4. Vulnerability

Users can now view CVEs without Errata/Advisories that affect their environment

You can now view and assess CVEs that do not have associated Errata/Advisories, but which could still affect your environment. This capability allows your organization to understand its full exposure to CVEs, and to take the necessary steps to mitigate any risks.

For more information about CVEs without Errata/Advisories, refer to this blog article.

7.2.5. Malware Detection

Ability to disable/enable malware signatures

The Malware service now allows you to disable signatures that are not relevant to your environment, in order to reduce noise and to enable you to focus on important and relevant signatures.

This feature enables your organization to make better-informed decisions about where to focus efforts, as the computing footprint grows and the resources managing the infrastructure shrink.

7.3. Red Hat Insights for OpenShift

7.3.1. Advisor

Workload recommendations ready for OpenShift Shared Control Plane

The Advisor service offers recommendations that follow best practices for deploying and running managed OpenShift workloads. These recommendations check for correct limit settings, working with budgets, and implementing best practices that do not harm the underlying cluster.

The October release of the Workload recommendations feature supports Red Hat Hypershift, also known as Red Hat Shared Control Plane on AWS. With this release, the Advisor UI can now show recommendations specific to this flavor of managed OpenShift.

7.3.2. Cost Management

Tag inheritance

A common reporting practice involves tagging every (OpenShift and non-OpenShift) resource that an application uses as application=X, and then requesting a cost report based on application=X from Cost Management.

In some cases, the tags did not propagate through the entire tag hierarchy, or the tags were propagated but not exposed. One example of this issue occurred previously, when OpenShift tags were propagated to PVs and PVCs, but the tags were not available in the Cost Management API. OpenShift now propagates all tags to all levels, and exposes them in the API.

AWS external ID authentication

AWS now supports the use of a unique external ID when creating IAM roles with cross-account access, and suggests using the unique ID as a best practice. You create the role in the Cost Management AWS source flow.

Cost Management now supports external ID. When you create an IAM role, the Integrations wizard flow for Cost Management AWS generates a per-customer randomized string for the external ID in AWS. Copy and paste the string into the External ID field.

img relnotes 102023 create iam role

When a source is created, Sources (Integrations) passes along the external ID and the Amazon Resource Name (ARN) role in a message to Cost Management.

Automatic OpenShift source name

To get per-cluster, per-namespace, and per-tag costs in an OpenShift cluster, install the Cost Management Metrics Operator (CMMO) and configure it to submit data to Red Hat.

The CMMO YAML file contains the Source (integration) name, which identifies the cluster in Cost Management. Previously, configuring the operator instance included manually changing the value of name from the default INSERT-SOURCE-NAME to a custom value. Not changing the value of name from the default value caused confusion, as well as difficult debugging issues.

OpenShift Container Platform (OCP) now automatically generates the OpenShift Source name. if you manually set a Source name, the CMMO uses that name; if not, CMMO automatically generates a Source name based on the clusterID.

Note

You can manually change the auto-generated name.

To disable automatic Source name creation, change the create_source parameter value in the CMMO YAML file to false.

    create_source: false
    name: INSERT-SOURCE-NAME

Providing feedback on Red Hat documentation

We appreciate and prioritize your feedback regarding our documentation. Provide as much detail as possible, so that your request can be quickly addressed.

Prerequisites

  • You are logged in to the Red Hat Customer Portal.

Procedure

To provide feedback, perform the following steps:

  1. Click the following link: Create Issue
  2. Describe the issue or enhancement in the Summary text box.
  3. Provide details about the issue or requested enhancement in the Description text box.
  4. Type your name in the Reporter text box.
  5. Click the Create button.

This action creates a documentation ticket and routes it to the appropriate documentation team. Thank you for taking the time to provide feedback.

Legal Notice

Copyright © 2024 Red Hat, Inc.
The text of and illustrations in this document are licensed by Red Hat under a Creative Commons Attribution–Share Alike 3.0 Unported license ("CC-BY-SA"). An explanation of CC-BY-SA is available at http://creativecommons.org/licenses/by-sa/3.0/. In accordance with CC-BY-SA, if you distribute this document or an adaptation of it, you must provide the URL for the original version.
Red Hat, as the licensor of this document, waives the right to enforce, and agrees not to assert, Section 4d of CC-BY-SA to the fullest extent permitted by applicable law.
Red Hat, Red Hat Enterprise Linux, the Shadowman logo, the Red Hat logo, JBoss, OpenShift, Fedora, the Infinity logo, and RHCE are trademarks of Red Hat, Inc., registered in the United States and other countries.
Linux® is the registered trademark of Linus Torvalds in the United States and other countries.
Java® is a registered trademark of Oracle and/or its affiliates.
XFS® is a trademark of Silicon Graphics International Corp. or its subsidiaries in the United States and/or other countries.
MySQL® is a registered trademark of MySQL AB in the United States, the European Union and other countries.
Node.js® is an official trademark of Joyent. Red Hat is not formally related to or endorsed by the official Joyent Node.js open source or commercial project.
The OpenStack® Word Mark and OpenStack logo are either registered trademarks/service marks or trademarks/service marks of the OpenStack Foundation, in the United States and other countries and are used with the OpenStack Foundation's permission. We are not affiliated with, endorsed or sponsored by the OpenStack Foundation, or the OpenStack community.
All other trademarks are the property of their respective owners.