Release Notes

Red Hat Insights 2022

Release Notes for Red Hat Insights

Red Hat Insights Documentation Team

Abstract

These release notes highlight the latest features and improvements implemented in the Red Hat Insights application and services.

Making open source more inclusive

Red Hat is committed to replacing problematic language in our code, documentation, and web properties. We are beginning with these four terms: master, slave, blacklist, and whitelist. Because of the enormity of this endeavor, these changes will be implemented gradually over several upcoming releases. For more details, see our CTO Chris Wright’s message.

Providing feedback on Red Hat documentation

We appreciate your feedback on our documentation. To provide feedback, highlight text in a document and add comments.

Prerequisites

  • You are logged in to the Red Hat Customer Portal.
  • In the Red Hat Customer Portal, the document is in the Multi-page HTML viewing format.

Procedure

To provide your feedback, perform the following steps:

  1. Click the Feedback button in the top-right corner of the document to see existing feedback.

    Note

    The feedback feature is enabled only in the Multi-page HTML format.

  2. Highlight the section of the document where you want to provide feedback.
  3. Click the Add Feedback pop-up that appears near the highlighted text.

    A text box appears in the feedback section on the right side of the page.

  4. Enter your feedback in the text box and click Submit.

    A documentation issue is created.

  5. To view the issue, click the issue link in the feedback view.

Chapter 1. About Insights for Red Hat Enterprise Linux

Red Hat Insights is a Software-as-a-Service (SaaS) application, included with your Red Hat Enterprise Linux (RHEL) subscription. Insights for Red Hat Enterprise Linux provides continuous, in-depth analysis of the RHEL infrastructure to proactively identify issues across multiple included services:

  • Advisor
  • Patch
  • Vulnerability
  • Compliance
  • Drift
  • Resource optimization
  • Policies

Powered by predictive analytics, Red Hat Insights gets smarter with every additional piece of intelligence and data. It can automatically discover relevant insights, recommend tailored, proactive, next actions, and even automate tasks. Using Red Hat Insights, customers can benefit from the experience and technical knowledge of Red Hat Certified Engineers, making it easier to identify, prioritize and resolve issues before business operations are affected.

As a SaaS offering, located at Red Hat Hybrid Cloud Console, Red Hat Insights is regularly updated, expanding its knowledge archive in real time to reflect new IT challenges that can impact the stability of mission-critical systems.

Chapter 2. May 2022

While viewing an advisor recommendation’s details The May 2022 release includes several enhancements. Keep reading to learn more.

2.1. Inventory

Inventory filters and indicators for systems without the Insights-client installed

Filter your inventory to show systems with, or without, the Insights client installed. Systems without the Insights client installed display a visual indicator, image showing transmission with a overlaid diagonal line to indicate disconnected systems , making it easier to identify and install the Insights client on those systems.

Global filtering for Ansible Automation Platform and Microsoft SQL Server

Red Hat Insights now provides support for global filtering of two additional workloads: Ansible Automation Platform and Microsoft SQL Server. This support enhances the existing SAP workload capabilities released in 2021. You can access these workloads under the “Filter by Status” functionality located in the top bar.

2.2. Advisor

Export of systems impacted by a recommendation

When viewing the details of an advisor recommendation, you can click the Export data icon to download a list of systems impacted by that recommendation. The list is available in CSV and JSON formats.

Ten new advisor recommendations

The advisor service released ten new recommendations. A few recommendations to note are:

  • IBM Power system experiences low reliability and availability with unsupported RHEL release--detecting unsupported RHEL version on IBM Power system
  • IBM Power systems experience low reliability and availability with a firmware which is End of Service Pack Support (EoSPS)--detecting unsupported firmware on IBM Power systems.
  • The postgresql database performance decreases when the tuned best practices are not applied--to assist with applying tuned profile when running PostgreSQL DB.
  • Systems will experience low reliability and availability with unmaintained or disabled hardware devices--to alert when using deprecated and/or unmaintained hardware.

2.3. Vulnerability

New dashbar in CVE list view

The vulnerability service has a new feature called the dashbar which appears at the top of the CVEs page. The dashbar aims to help prioritize and navigate findings easier by showing the number of, and links to, CVEs that are typically associated with higher risk to your enterprise. You have easier visibility and access to CVEs with:

  • known exploits
  • security rules
  • critical severity
  • important severity

The dashbar will also contain alerts about high-priority CVEs, when needed to increase visibility and awareness of a CVE’s potential threat.

2.4. Compliance

Alerts and Notifications

The compliance service now supports the ability to receive alerts and notifications, which are sent when certain conditions are met. This functionality includes the ability to be notified when systems fall below a specific compliance threshold or when they fail to report. This feature makes it easier for you to keep track of both your compliance status and program. Set these new alerts in the Red Hat Hybrid Cloud Console > Settings > Notifications > Red Hat Enterprise Linux menu.

2.5. Patch

Patch sets available in beta

With the beta release of patch sets, you can show the patch status for your systems, up to the date that matches your organization’s patching policy. Patch sets do not affect yum/dnf operations on the system, but they allow you to refine your patch-status reporting in Red Hat Insights and can be used to create remediation playbooks for simple patch cycles.

You can access the beta release of patch sets at Red Hat Hybrid Cloud Console > Red Hat Enterprise Linux > Red Hat Insights > Patch > Patch Set.

2.6. Policies

Microsoft SQL Server (MSSQL) facts autocompletion in conditions builder

Microsoft SQL Server facts that are collected as part of a system profile are now shown in policies and can be used to create conditions and send notifications about MSSQL workloads.

2.7. Drift

Drift dashboard updates

  • You no longer have the option to get 90 days of event history.
  • The dashboard now contains an announcement message encouraging the setup of baselines notifications.

2.8. Resource optimization

Access to the resource optimization service is now available on the Red Hat Insights dashboard

The resource optimization service is now available on the Insights overview dashboard. You can locate, access, and get started with the resource optimization service much easier.

RHEL version displayed in two new ways

The operating system (OS) version is now displayed in the system list and system details views, where it can be sorted and filtered. OS information is also available from the API.

2.9. Integrations and notifications

Set User Access groups as recipients of email notifications

You can now use custom User Access groups on your account as recipients for email notifications. In addition to the option of sending the notifications to just administrators, or to all members of the group, the recipient list for email notifications can include User Access groups and target a specific list of users, as defined in User Access for your account. Notifications administrators can now create and assign targeted Behavior Groups based on their User Access configuration.

Additional upgrades

  • New events from the compliance service are now handled (see the Compliance section above)
  • Filtering by Action Type and Action Status are now available in the event log.
  • Filtering by Application in event log now allows you to collapse or expand the subcontents.

Chapter 3. November 2021

3.1. Red Hat Insights

This release includes the following enhancements:

Microsoft SQL Server workload management

Red Hat Insights now provides functionality and controls to assist in managing Microsoft SQL Server workloads hosted on Red Hat Enterprise Linux. Red Hat Insights automatically profiles and identifies registered hosts running SQL Server and enables additional filtration capabilities within the Insights services. SQL Server-specific recommendations are available within Advisor, and additional SQL Server facts are available in the drift service comparison and baseline functionality, policy creation, and information available via Inventory. Red Hat Insights can be further extended through integration with the Microsoft SQL Assessment API, providing additional detection and recommendation capabilities.

Remediation with Insights and Red Hat connector

With the release of RHEL 8.5, you can connect your system using the Red Hat connector utility. The Red Hat connector utility consists of a command-line interface and daemon that enable users, within the Insights for Red Hat Enterprise Linux application, to execute Insights remediation playbooks directly on the host (console.redhat.com/insights). For more information, refer to the Red Hat Connector Configuration Guide.

3.2. Advisor

This release includes the following enhancements:

RHEL minor version visible in systems and inventory lists

In advisor service systems lists, users can see the RHEL minor version running on each system. In the general and recommendation-specific systems lists, users can filter by the OS minor version to allow customers to quickly narrow down the list of affected systems by the version of RHEL they are interested in.

Advisor event notifications

The advisor service enables the notifications functionality on the Red Hat Hybrid Cloud Console platform. This feature enables notifications administrators to define notification behavior groups and integrations so users can more easily monitor for advisor service and OpenShift events. Triggered events are handled based on the Notifications configuration at the account level (for example, email alert & summary, or integration with webhooks).

The advisor service has two event types that trigger notifications for users subscribed to receive them. In addition to the New recommendation event, a new Resolved recommendation event triggers notifications when a system checks in and advisor notices that a previously existing recommendation is resolved.

For more information about leveraging advisor service notifications in a self-healing infrastructure, read the following proof-of-concept blog post: Self-healing infrastructure with Red Hat Insights and Ansible Automation Platform

Onboarding tour

An onboarding tour will help visitors and new advisor-service users navigate the application and understand its basic workflow, from identifying the most critical issue in a RHEL infrastructure to creating a remediation playbook to resolve it. To view the onboarding tour, visit the Insights Resource Center (light bulb in bottom right corner) in the advisor service application.

Visual enhancements

  • Sticky headers and compact spacing in System and Recommendation tables
  • Incident labels and filter in systems page

New recommendations

  • Red Hat Enterprise Linux

    • More than 80 new recommendations have been added to the Insights for RHEL advisor service. The main new recommendation themes are focused on Ansible Automation Platform & Microsoft SQL Server.
    • As part of continuous maintenance of the recommendations archive, we have also reviewed and retired more than 80 recommendations.
  • Ansible Automation Platform

    • We have introduced 10 new recommendations focused on improving the operational experience of Ansible Controller hosts. You can view these recommendations under a new featured advisor service topic, Ansible Automation Platform, in the Insights for RHEL advisor service UI.
  • OpenShift

    • Ten new OpenShift recommendations focused on storage and networking configuration, and user and certificate management, were added to the advisor service.

Insights-operator improvements for OpenShift

Insights operator now leverages conditional data gathering, which reduces the size of the insights-operator archive while allowing the Insights for RHEL application to collect specific information only when really needed.

3.3. Compliance

This release includes the following enhancements:

In-service tag filtering

The compliance service now supports filters within various views specific to the compliance service. Unlike global tag filtering (Filter by status) available throughout the Insights for RHEL application, compliance service tags are set within systems list views; for example, in report details for a policy, policy details Systems tab, and in the Compliance > Systems page.

PDF report by policy

A PDF report is now available for policies that executed successfully and reported status. This report makes it easier to share results of scans with auditors, risk and compliance teams, or others within the organization. Users will have some control on the sort of data they would like to see within the report.

Bug fixes

  • Fixed “Select All” on tables throughout
  • Minor UI fixes throughout (for example, icon color, etc)

3.4. Vulnerability

This release includes the following enhancements:

Use of Red Hat OVAL feed

The vulnerability service is using OVAL behind the scenes for vulnerability analysis. This leads to a more comprehensive set of reporting, and customers may see a change in CVEs being reported. Additional details can be found in this KCS article.

Filtering by RHEL minor version

The vulnerability service now supports filters by RHEL minor versions for systems. Filtering by RHEL minor versions has been added throughout any list of systems within the vulnerability service. This leads to finer triaging and reporting.

Bug fixes

  • Column management
  • Minor UI fixes throughout (e.g. icon color, etc)

3.5. Drift

This release includes the following enhancements:

Notifications for “drift from baseline detected” events

The drift service now makes use of the notifications functionality, allowing entitled users to define systems to monitor for drift-from-baselines events. Triggered events are handled based on the notifications configuration at the account level (for example, email alert & summary, or integration with webhooks).

Bug fixes and enhancements

  • Multi values for facts and tags are now displayed consistently.
  • ‘Reset filters’ feature is fixed and updates URL parameters accordingly.
  • Reference ID is now set correctly when adding baselines to comparison.
  • Tooltips are now visible on all selected baskets' icons.
  • ‘Filter by name’ is now case insensitive and returns results for both lowercase and uppercase.
  • Semantic for baseline errors is improved (typos, error messages, etc).
  • UI now handles RBAC granular permissions for drift:notifications:[read|write], historical-system-profiles:read and baselines:write.
  • The Baselines empty state is improved.
  • All selected systems in the add-system modal dialog box are now grouped on the first page.
  • A couple of issues on selected-systems basket are fixed (bulk, sizing).
  • Selected systems basket is now correctly emptied on “Clear all comparisons”.
  • Padding and alignment on Comparison and Baseline screens are fixed.
  • Minor UI fixes throughout (for example, icon color, etc).
  • Export to PDF is now available in addition to Export to CSV.
  • Baseline list view now displays the system association count for drift service notifications.
  • System tags with multivalue are now displayed correctly in comparisons Enabling/Disabling toggle for Notifications.

3.6. Policies

This release includes the following enhancements:

Bug fixes and UI enhancements

  • Empty state is now following Red Hat Hybrid Cloud Console guidelines.
  • Reset filters are now following Red Hat Hybrid Cloud Console guidelines.
  • Recent trigger history screen is now improved with retention information (14 days) in its empty state.
  • Additional facts are now available in the type-ahead when writing conditions for policies: facts.installed_packages_delta, facts.cpu_model, facts.dnf_modules and facts.operating_system.

3.7. Patch

This release includes the following enhancements:

Introduction of patch status

View a summary of how many hosts are up-to-date, how many hosts have patches available, and click to filter just those lists. Summary totals update based on filters. This lets customers get these quick summaries for tagged groups, workloads, or RHEL product versions.

Expanded scope for patch analysis

Analyze and report on applicability for EPEL packages and advisories for RHEL 7 and RHEL 8.

Visibility of most-impactful advisories

Review the top four most-impactful advisories based on type and number of hosts affected. Each of these highlighted advisories are presented with basic summary information, including the type/severity, brief description, number of hosts affected, and whether or not a reboot is required.

Enhanced package analysis and remediation

Gain a better understanding of packages deployed across your RHEL infrastructure and take the following actions:

  • Filter systems by the version of the package installed on them.
  • Select and remediate systems by adding an update to the latest available package to a playbook.
  • Export the list of systems with a particular package installed.

3.8. Hybrid Cloud Console Integrations & Notifications

This release includes the following enhancements:

New event types

New event types are available for users to get (email and webhook) notifications about:

  • ‘Drift from baseline detected’ (Drift)
  • ‘New recommendation’ and ‘Resolved recommendation’ (Advisor)

Behavior groups

Notifications administrators can now define multiple Behavior Groups to simplify the assignment of actions to event types. This new feature extends the previous Default behavior functionality, allowing Notifications administrators to define as many Behavior Groups as they want.

Behavior group, send-email action now supports admin-only recipients

‘Users: All’ and ‘Users: Admins’ are now both supported as recipients for sending email notifications. With this additional feature, Notifications administrators can configure notifications to target account Organization administrators when events trigger email actions.

Notifications event log

The event log lists all previously triggered events on the account and actions taken according to the configured behavior groups. The list is filterable by event, bundle, and application. The event log helps Notifications administrators troubleshoot notification configurations and ensure that the service performs as expected.

Bug fixes and UI enhancements

A couple of small bug fixes and enhancements are available in the integrations and notifications services:

  • Filters & resetting filters now follow Red Hat Hybrid Cloud Console standards.
  • The URL for the system link in the advisor service notification email is now correct.
  • Email templates now point to console.redhat in place of cloud.redhat.
  • Only one “Send email” action can be added per behavior group.
  • Notifications page & modal dialog are fixed for mobile-client display.
  • Action selection on behavior groups includes all options (‘Send an email’ and ‘Integration: Webhook’).
  • Date on the first generated daily digest email is correct.
  • Notifications documentation is improved.

Chapter 4. More Information About Insights for Red Hat Enterprise Linux

Learn more about Insights for Red Hat Enterprise Linux from the following resources:

Legal Notice

Copyright © 2022 Red Hat, Inc.
The text of and illustrations in this document are licensed by Red Hat under a Creative Commons Attribution–Share Alike 3.0 Unported license ("CC-BY-SA"). An explanation of CC-BY-SA is available at http://creativecommons.org/licenses/by-sa/3.0/. In accordance with CC-BY-SA, if you distribute this document or an adaptation of it, you must provide the URL for the original version.
Red Hat, as the licensor of this document, waives the right to enforce, and agrees not to assert, Section 4d of CC-BY-SA to the fullest extent permitted by applicable law.
Red Hat, Red Hat Enterprise Linux, the Shadowman logo, the Red Hat logo, JBoss, OpenShift, Fedora, the Infinity logo, and RHCE are trademarks of Red Hat, Inc., registered in the United States and other countries.
Linux® is the registered trademark of Linus Torvalds in the United States and other countries.
Java® is a registered trademark of Oracle and/or its affiliates.
XFS® is a trademark of Silicon Graphics International Corp. or its subsidiaries in the United States and/or other countries.
MySQL® is a registered trademark of MySQL AB in the United States, the European Union and other countries.
Node.js® is an official trademark of Joyent. Red Hat is not formally related to or endorsed by the official Joyent Node.js open source or commercial project.
The OpenStack® Word Mark and OpenStack logo are either registered trademarks/service marks or trademarks/service marks of the OpenStack Foundation, in the United States and other countries and are used with the OpenStack Foundation's permission. We are not affiliated with, endorsed or sponsored by the OpenStack Foundation, or the OpenStack community.
All other trademarks are the property of their respective owners.