Ensuring Approved Packages Are Installed Across System Profiles Using System Comparison
How to validate approved packages are installed across system profiles and generate reports
Chapter 1. Overview
As an IT operator, use System Comparison to ensure approved security tools and RPM packages are installed on each system:
- Access the System Comparison service.
- Add systems manually within System Comparison.
- Filter system configuration data by installed packages.
- Export the filtered data to a CSV file for analysis.
Chapter 2. Accessing the System and Baselines Comparison Service
The System Comparison service is part of Red Hat Insights and can be accessed via https://cloud.redhat.com.
- On https://cloud.redhat.com, in the Cloud Management Services for Red Hat Enterprise Linux panel, click Drift Analysis. The Cloud Management Services dashboard opens.
Click Drift in the left-side navigation menu to view the Drift options: Comparison and Baselines.
Click Add to comparison to open the Comparison screen where you can add systems or baselines to compare.
- Click Baselines to open the Baselines screen, where you can create baselines. This screen also lists any baselines that exist.
- Click Add to comparison to open the Comparison screen where you can add systems or baselines to compare.
You can now start adding systems and baselines to compare their facts.
Chapter 3. Adding Systems Manually within System Comparison
Add systems registered in your cloud management services inventory within the System Comparison service.
- On the Red Hat Insights user interface, click → in the left-side navigation menu.
- On the Comparison screen, click Add System.
- Select the systems to compare from the list. Alternatively, enter the system name in the search box to find by name, then select the system.
- Click Submit.
- At any time, you can add more systems by clicking on the Add System button on the right-side of the systems you have already added for comparison.
- Similarly, you can remove a particular system under comparison by clicking the cross sign on the upper-right corner of the individual system name, or, you can remove all systems under comparison by clicking the options menu located at the top, then clicking Clear all comparisons to start again.
Chapter 4. Filtering System Facts By Installed Packages
Filter the system facts by installed packages.
Enter the required package name in the search box at the top, or enter
installed_packagesto view the list of all packages installed.
- In the View drop-down list, ensure you are viewing the result for all comparison states, that is where installed packages and their versions are same, different, and where information is missing across systems.
In the example screen capture below, facts are filtered by installed RPM packages for which you can see a subset of the list. Note that for package
deltarpm there is no difference in its version between the two systems, however, packages
rpm-python show a difference. Also, data is missing for some of the other packages. This is a discrepancy as systems were not consistently upgraded with approved packages.
Chapter 5. Exporting System Comparison Output
Export the system profiles you filtered above by installed packages where RPM versions are same, different, and where information is missing to a comma-separated values (CSV) file.
The exported CSV report preserves all your current selections on the system comparison output, including any filters applied. That is, it follows the WYSIWYG (What You See Is What You Get) paradigm. Therefore, you will need to expand any nested fact categories (
installed_packages, for example) to be exported in the report.
- On the system comparison output screen for two or more systems, click the options menu located at the top.
- Click Export as CSV.
Open the CSV file with the tool of your choice so that you can easily analyze discrepancies in installed RPM packages.