Chapter 3. Understanding your Compliance service reporting

The Compliance service displays the latest available OpenSCAP results for each system. View summary results for each policy in Red Hat Insights Compliance > Reports.

For a deeper understanding of compliance status per system, and to reduce the "noise" of many systems reporting data, you can filter and sort your data to see which rules have passed and failed.

The following sections describe ways to refine your data, depending on your location in the Compliance service, to focus on your most important issues.

3.1. SCAP policies

Use the Search function to locate a specific policy by name. Then click on the policy name to see the policy card, which includes the following information:

  • Details. View details such as compliance threshold, business objective, OS and SSG versions.
  • Rules. View and filter the rules included in the specific SSG version of the policy by name and severity, then sort results by rule name, severity, or Ansible Playbook support.
  • Systems. Search by system name to locate a specific system associated with the policy then click the system name to see more information about that system and issues that may affect it.

3.2. Systems

  • The default functionality on this page is to search by system name.
  • Break systems into smaller groups by

    • Name. Search by system name.
    • Policy. Search by policy name and see the systems included in that policy.
    • Operating system. Search by RHEL OS major versions to see only RHEL 7 or RHEL 8 systems.

3.3. Searching

The search function in the Compliance service works in the context of the page you are viewing.

  • SCAP Policies. Search for a specific policy by name.
  • Systems. Search by system name, policy, or RHEL operating system major version.
  • Rules list (single system). The rules list search function allows you to search by the rule name or identifier. Identifiers are shown directly below the rule name.

3.4. Filtering

Filtering is available from multiple views in the Compliance service and filtering options are unique to the page view. The Filters icon is located on the left side of the Search field. Click the down arrow and check the boxes to set filters.

  • Systems list. Filter by Name, Status, and Source.
  • Single system rules list. Filter rules that have passed or not passed, or by rule severity.

3.5. Sorting your data

You can order your results by sorting columns in the Compliance service Systems list and the Rules list for a policy. The following columns are sortable on each list:

  • Compliance service Systems list

    • System name (Alphabetical)
    • Policy name (Alphabetical)
    • Compliance score (Percentage of rules passed on a system)
    • Last scan (Time elapsed since last scan)
  • Rules list for a policy

    • Rule name (Alphabetical)
    • Severity (Low, Medium, High, Critical)
    • Ansible support (Playbook available or not available)