Menu Close
Settings Close

Language and Page Formatting Options

Chapter 5. November 2021

5.1. Red Hat Insights for Red Hat Enterprise Linux

5.1.1. Product Wide Updates

This release includes the following enhancements:

Remediation with Insights and Red Hat connector

With the release of RHEL 8.5, you can connect your system using the Red Hat connector utility. The Red Hat connector utility consists of a command-line interface and daemon that enable users, within the Insights for Red Hat Enterprise Linux application, to execute Insights remediation playbooks directly on the host (console.redhat.com/insights). For more information, refer to the Red Hat Connector Configuration Guide.

5.1.2. Advisor

This release includes the following enhancements:

RHEL minor version visible in systems and inventory lists

In advisor service systems lists, users can see the RHEL minor version running on each system. In the general and recommendation-specific systems lists, users can filter by the OS minor version to allow customers to quickly narrow down the list of affected systems by the version of RHEL they are interested in.

Advisor event notifications

The advisor service enables the notifications functionality on the Red Hat Hybrid Cloud Console platform. This feature enables notifications administrators to define notification behavior groups and integrations so users can more easily monitor for advisor service and OpenShift events. Triggered events are handled based on the Notifications configuration at the account level (for example, email alert & summary, or integration with webhooks).

The advisor service has two event types that trigger notifications for users subscribed to receive them. In addition to the New recommendation event, a new Resolved recommendation event triggers notifications when a system checks in and advisor notices that a previously existing recommendation is resolved.

For more information about leveraging advisor service notifications in a self-healing infrastructure, read the following proof-of-concept blog post: Self-healing infrastructure with Red Hat Insights and Ansible Automation Platform

Microsoft SQL Server workload management

Red Hat Insights now provides functionality and controls to assist in managing Microsoft SQL Server workloads hosted on Red Hat Enterprise Linux. Red Hat Insights automatically profiles and identifies registered hosts running SQL Server and enables additional filtration capabilities within the Insights services. SQL Server-specific recommendations are available within Advisor, and additional SQL Server facts are available in the drift service comparison and baseline functionality, policy creation, and information available via Inventory. Red Hat Insights can be further extended through integration with the Microsoft SQL Assessment API, providing additional detection and recommendation capabilities.

Onboarding tour

An onboarding tour will help visitors and new advisor-service users navigate the application and understand its basic workflow, from identifying the most critical issue in a RHEL infrastructure to creating a remediation playbook to resolve it. To view the onboarding tour, visit the Insights Resource Center (light bulb in bottom right corner) in the advisor service application.

Visual enhancements

  • Sticky headers and compact spacing in System and Recommendation tables
  • Incident labels and filter in systems page

New recommendations

  • Red Hat Enterprise Linux

    • More than 80 new recommendations have been added to the Insights for RHEL advisor service. The main new recommendation themes are focused on Ansible Automation Platform & Microsoft SQL Server.
    • As part of continuous maintenance of the recommendations archive, we have also reviewed and retired more than 80 recommendations.
  • Ansible Automation Platform

    • We have introduced 10 new recommendations focused on improving the operational experience of Ansible Controller hosts. You can view these recommendations under a new featured advisor service topic, Ansible Automation Platform, in the Insights for RHEL advisor service UI.
  • OpenShift

    • Ten new OpenShift recommendations focused on storage and networking configuration, and user and certificate management, were added to the advisor service.

Insights-operator improvements for OpenShift

Insights operator now leverages conditional data gathering, which reduces the size of the insights-operator archive while allowing the Insights for RHEL application to collect specific information only when really needed.

5.1.3. Compliance

This release includes the following enhancements:

In-service tag filtering

The compliance service now supports filters within various views specific to the compliance service. Unlike global tag filtering (Filter by status) available throughout the Insights for RHEL application, compliance service tags are set within systems list views; for example, in report details for a policy, policy details Systems tab, and in the Compliance > Systems page.

PDF report by policy

A PDF report is now available for policies that executed successfully and reported status. This report makes it easier to share results of scans with auditors, risk and compliance teams, or others within the organization. Users will have some control on the sort of data they would like to see within the report.

Bug fixes

  • Fixed “Select All” on tables throughout
  • Minor UI fixes throughout (for example, icon color, etc)

5.1.4. Drift

This release includes the following enhancements:

Notifications for “drift from baseline detected” events

The drift service now makes use of the notifications functionality, allowing entitled users to define systems to monitor for drift-from-baselines events. Triggered events are handled based on the notifications configuration at the account level (for example, email alert & summary, or integration with webhooks).

Bug fixes and enhancements

  • Multi values for facts and tags are now displayed consistently.
  • ‘Reset filters’ feature is fixed and updates URL parameters accordingly.
  • Reference ID is now set correctly when adding baselines to comparison.
  • Tooltips are now visible on all selected baskets' icons.
  • ‘Filter by name’ is now case insensitive and returns results for both lowercase and uppercase.
  • Semantic for baseline errors is improved (typos, error messages, etc).
  • UI now handles RBAC granular permissions for drift:notifications:[read|write], historical-system-profiles:read and baselines:write.
  • The Baselines empty state is improved.
  • All selected systems in the add-system modal dialog box are now grouped on the first page.
  • A couple of issues on selected-systems basket are fixed (bulk, sizing).
  • Selected systems basket is now correctly emptied on “Clear all comparisons”.
  • Padding and alignment on Comparison and Baseline screens are fixed.
  • Minor UI fixes throughout (for example, icon color, etc).
  • Export to PDF is now available in addition to Export to CSV.
  • Baseline list view now displays the system association count for drift service notifications.
  • System tags with multivalue are now displayed correctly in comparisons
  • Enabling/Disabling toggle for Notifications.

5.1.5. Notifications and integrations

This release includes the following enhancements:

New event types

New event types are available for users to get (email and webhook) notifications about:

  • ‘Drift from baseline detected’ (Drift)
  • ‘New recommendation’ and ‘Resolved recommendation’ (Advisor)

Behavior groups

Notifications administrators can now define multiple Behavior Groups to simplify the assignment of actions to event types. This new feature extends the previous Default behavior functionality, allowing Notifications administrators to define as many Behavior Groups as they want.

Behavior group, send-email action now supports admin-only recipients

‘Users: All’ and ‘Users: Admins’ are now both supported as recipients for sending email notifications. With this additional feature, Notifications administrators can configure notifications to target account Organization administrators when events trigger email actions.

Notifications event log

The event log lists all previously triggered events on the account and actions taken according to the configured behavior groups. The list is filterable by event, bundle, and application. The event log helps Notifications administrators troubleshoot notification configurations and ensure that the service performs as expected.

Bug fixes and UI enhancements

A couple of small bug fixes and enhancements are available in the integrations and notifications services:

  • Filters & resetting filters now follow Red Hat Hybrid Cloud Console standards.
  • The URL for the system link in the advisor service notification email is now correct.
  • Email templates now point to console.redhat in place of cloud.redhat.
  • Only one “Send email” action can be added per behavior group.
  • Notifications page & modal dialog are fixed for mobile-client display.
  • Action selection on behavior groups includes all options (‘Send an email’ and ‘Integration: Webhook’).
  • Date on the first generated daily digest email is correct.
  • Notifications documentation is improved.

5.1.6. Patch

This release includes the following enhancements:

Introduction of patch status

View a summary of how many hosts are up-to-date, how many hosts have patches available, and click to filter just those lists. Summary totals update based on filters. This lets customers get these quick summaries for tagged groups, workloads, or RHEL product versions.

Expanded scope for patch analysis

Analyze and report on applicability for EPEL packages and advisories for RHEL 7 and RHEL 8.

Visibility of most-impactful advisories

Review the top four most-impactful advisories based on type and number of hosts affected. Each of these highlighted advisories are presented with basic summary information, including the type/severity, brief description, number of hosts affected, and whether or not a reboot is required.

Enhanced package analysis and remediation

Gain a better understanding of packages deployed across your RHEL infrastructure and take the following actions:

  • Filter systems by the version of the package installed on them.
  • Select and remediate systems by adding an update to the latest available package to a playbook.
  • Export the list of systems with a particular package installed.

5.1.7. Policies

This release includes the following enhancements:

Bug fixes and UI enhancements

  • Empty state is now following Red Hat Hybrid Cloud Console guidelines.
  • Reset filters are now following Red Hat Hybrid Cloud Console guidelines.
  • Recent trigger history screen is now improved with retention information (14 days) in its empty state.
  • Additional facts are now available in the type-ahead when writing conditions for policies: facts.installed_packages_delta, facts.cpu_model, facts.dnf_modules and facts.operating_system.

5.1.8. Vulnerability

This release includes the following enhancements:

Use of Red Hat OVAL feed

The vulnerability service is using OVAL behind the scenes for vulnerability analysis. This leads to a more comprehensive set of reporting, and customers may see a change in CVEs being reported. Additional details can be found in this KCS article.

Filtering by RHEL minor version

The vulnerability service now supports filters by RHEL minor versions for systems. Filtering by RHEL minor versions has been added throughout any list of systems within the vulnerability service. This leads to finer triaging and reporting.

Bug fixes

  • Column management
  • Minor UI fixes throughout (e.g. icon color, etc)