Release Notes with FedRAMP

Red Hat Insights 1-latest

Release Notes for Red Hat Insights with FedRAMP

Red Hat Insights Documentation Team

Abstract

These release notes highlight the latest features and improvements implemented in the Red Hat Insights application and services with FedRAMP®.
Red Hat is committed to replacing problematic language in our code, documentation, and web properties. We are beginning with these four terms: master, slave, blacklist, and whitelist. Because of the enormity of this endeavor, these changes will be implemented gradually over several upcoming releases. For more details, see our CTO Chris Wright's message.

Chapter 1. About Red Hat Insights

Powered by predictive analytics, Red Hat Insights gets smarter with every additional piece of intelligence and data. It can automatically discover relevant insights, recommend tailored, proactive, next actions, and even automate tasks. Using Red Hat Insights, customers can benefit from the experience and technical knowledge of Red Hat Certified Engineers, making it easier to identify, prioritize and resolve issues before business operations are affected.

As a SaaS offering, Red Hat Insights is regularly updated. Regular updates expand the Insights knowledge archive in real time to reflect new IT challenges that can impact the stability of mission-critical systems.

Chapter 2. February 2024

2.1. Red Hat Insights for Red Hat Enterprise Linux

2.1.1. Advisor

New Recommendations

The following new recommendations were added in February:

  • RHEL guest randomly crashes on Azure with accelerated networking device hot-plug/hot-unplug
  • Kernel memory leak occurs when using RDMA on NFS mounts due to a known bug in the kernel
  • Decreased security when "UsePAM" is disabled in the sshd configuration
  • Decreased stability when the feature of automatically adding transient devices back into an existing MD array is not enabled

Chapter 3. January 2024

3.1. Red Hat Insights for Red Hat Enterprise Linux

3.1.1. Advisor

New Recommendations

During January, the team made four releases, introducing 14 brand new recommendations in Advisor, mostly focused on remediating risks in the kernel.

  • Kernel crash occurs when NULL pointer dereference occurs in the vmxnet3 NIC driver on VMware ESXi hosts, due to a known bug in the kernel
  • The root filesystem is mounted in read-only mode after reboot when there is a mount point name that ends with a space
  • Kernel panic occurs when the CIFS file systems are mounted with FQDN, due to a known kernel bug
  • Kernel panic occurs with the Transparent Huge Page (THP) enabled, due to a known kernel bug
  • The system with a separate /usr file system and systemd-219-78.el7_9.8 package installed cannot boot after the initramfs is regenerated
  • Memory leak occurs when the number of orphan session scopes is large, due to a bug in systemd
  • System hang occurs with lockups when using smartpqi driver, due to a known kernel bug
  • Logs cannot be collected when the symbolic link /dev/log is missing
  • NFS4 client can become unresponsive when the server side restarts, due to a bug in kernel
  • Satellite will become unresponsive after the noon, due to long-running and failing CertificateCleanupJob in candlepin
  • NFS4 server runs into infinite loop with NFS4ERR_DELAY reply, due to a regression bug in kernel
  • Boot failure occurs due to the absence of critical kernel modules
  • Samba cannot work with sssd as expected when winbind service is not running
  • The httpd service is unable to create a thread when the memory or nproc resource is not enough

Chapter 4. December 2023

4.1. Product-wide

4.1.1. Published Blogs and Resources

4.2. Red Hat Insights for Red Hat Enterprise Linux

4.2.1. Advisor

New Recommendations

Six new recommendations are available in Advisor:

4.2.2. Image Builder

RHEL lifecycle visualization available in Image Builder

You can now see a visualization of the RHEL 8 and RHEL 9 support lifecycle in Image Builder. When you select RHEL 8 for your image build, you will see a visualization that shows you how much time is left to receive full support for RHEL 8 and 9. Full support for RHEL 8 is ending in 2024. You can select RHEL 9 to receive full support through 2027.

timeline of RHEL 8 and 9 full support and maintenance lifecyles

Chapter 5. November 2023

5.1. Red Hat Hybrid Cloud Console

5.1.1. Published blogs and resources

Red Hat Insights offers timely blogs and other resources to supplement our official documentation.

5.2. Red Hat Insights for Red Hat Enterprise Linux

5.2.1. Insights Client/RHC

End of Life for Basic Authentication for Insights client

Effective February 29th, 2024, the insights-client will no longer support Basic Authentication (authmethod=basic) as an option for connecting a host with Red Hat Insights. For more information, and guidance about how to switch to alternative options, see the Red Hat Insights lifecycle and update page.

5.2.2. Conversions

CentOS 7 pre-conversion analysis and conversion experience launched

On June 30, 2024, CentOS Linux 7 will reach End of Life (EOL), requiring users to migrate to a new operating system to continue receiving updates, security patches and new features. As this date rapidly approaches, determining a path for migration and scope will be key as you work to assign resources and meet completion dates. With a recent update to Red Hat Insights, CentOS 7 users can now:

  • Register CentOS Linux 7 systems to display in the Insights inventory list.
  • Start a new pre-conversion task at Automation Toolkit > Tasks > Pre-conversion analysis for converting to RHEL to analyze selected CentOS Linux 7 systems, and receive remediation advice so you can proactively handle issues that could complicate or prevent conversion to RHEL.
  • Run a new conversion task at Automation Toolkit > Tasks > Convert to RHEL from CentOS Linux 7 after you resolve issues identified by the pre-conversion analysis to complete the conversion to RHEL.

Example of output from running a conversion task in Insights

Shows output messages about systems after running a conversion task in Insights

You can find all Insights tasks at Automation Toolkit > Tasks.

You can learn more about these new features and get started with:

5.2.3. Advisor

New recommendations released

Fourteen new recommendations are available:

New InterSystems topic

Red Hat Insights currently has ten Advisor recommendations available for the InterSystems workload. You can find the InterSystems recommendations in a new Advisor topic at Advisor > topics > Intersystems on the Red Hat Hybrid Console. Insights will continue to add InterSystems-focused recommendations to this new topic. To see all Advisor topics, go to Advisor > topics.

5.2.4. Patch

Improved patch reporting for Satellite-managed hosts

You can now check in Satellite-managed hosts with a new –build-packagecache flag for better reporting of installable updates. With the flag set, the host will self-report the list of updates that should be installed based on the content available in the Satellite content view to which that system is subscribed. You can find more information in:

5.2.5. Image Builder

Known issue: Insights image builder fails to build RHEL for Edge images when npm is included

When building RHEL 8 images within Insights image builder, you cannot customize your RHEL for Edge image with the npm package. The NPM package manager expects its configuration to be in the {prefix}/etc/npmrc directory but the npm RPM packages a symlink in the /usr/etc/npmrc directory that links to /etc/npmrc. To work around this problem, include the npm package inside of the OSTree system.

Insights image builder now supports building images for the aarch64 architecture

This enhancement to image builder extends support to the aarch64 architecture, which allows you to select the architecture that you want to build. The compatible target images that you can build for the aarch64 architecture are Amazon Web Service (AWS), Bare Metal, and Guest Images.

Support to build images suitable for Windows Subsystem Linux (WSL)

You can use the Red Hat Insights image builder to create an image suitable for Windows Subsystem Linux (WSL). You can use that image to run a Linux environment directly on your Windows machine. You can use most of the command-line tools, utilities, and applications. The kernel is supplied by Microsoft, and developed on WSL2-Linux-Kernel. This is supported only for the Red Hat Enterprise Linux (RHEL) 8 release. For more information, see Create customized RHEL images for the WSL environment.

Chapter 6. October 2023

6.1. Red Hat Hybrid Cloud Console

6.1.1. General

Notifications UI Refresh

Previously, notifications were grouped by product family. The notifications service now offers an Overview landing page as a single place to configure all events, as well as a separate page to view events.

6.2. Red Hat Insights for Red Hat Enterprise Linux

6.2.1. Published Blogs & Resources

6.2.2. Inventory

Inventory Groups now available

The Inventory Groups feature enables you to set permissions on specific inventory objects, such as inventory groups and systems. You can organize systems inventory into different groups, as well as restrict access to specific users for each group. Once you configure user access, those system permissions take effect across all Insights services.

img relnotes 102023 inventory

For more information about configuring inventory groups, refer to Viewing and managing system inventory.

6.2.3. Advisor

New recommendations added

  • The performance of InterSystems IRIS server may be impacted when Transparent Huge Pages is enabled.
  • Apply hugepages recommendation for better performance of InterSystems IRIS.
  • Apply shmmax recommendation for better performance of InterSystems IRIS.
  • Degraded DNS performance on RHEL 8.5 when Ethernet Controller X710 for 10GbE SFP+ with i40e driver is used.
  • The tuned does not start automatically when the OS boots with graphical target mode.
  • System hangs due to a known kernel bug in the e1000e driver.
  • Application failure occurs when the consumption of file descriptors reaches limit.
  • The chrony service cannot resolve NTP server’s hostnames when it does not have the read permission to the /etc/resolv.conf file.
  • The sendmail service rejects or queues emails when the system load is high.

6.2.4. Vulnerability

Users can now view CVEs without Errata/Advisories that affect their environment

You can now view and assess CVEs that do not have associated Errata/Advisories, but which could still affect your environment. This capability allows your organization to understand its full exposure to CVEs, and to take the necessary steps to mitigate any risks.

For more information about CVEs without Errata/Advisories, refer to this blog article.

6.2.5. Malware Detection

Ability to disable/enable malware signatures

The Malware service now allows you to disable signatures that are not relevant to your environment, in order to reduce noise and to enable you to focus on important and relevant signatures.

This feature enables your organization to make better-informed decisions about where to focus efforts, as the computing footprint grows and the resources managing the infrastructure shrink.

Chapter 7. September 2023

7.1. Red Hat Hybrid Cloud Console

7.1.1. Published Blogs & Resources

7.1.2. Notifications

Daily email notification time can now be configured per account

The time at which daily email notifications are sent out every day is now configurable under Hybrid Cloud Console > the Settings icon (⚙) > Settings > Notifications for OpenShift, Red Hat Enterprise Linux, and Console. A new Settings tab allows each account to override the default 00:00 UTC time with the time of their choice. This enhancement was implemented based on feedback received from EMEA customers wishing to receive their daily notifications every morning before they start work.

User Preferences are consolidated for centralized configuration

All settings related to email notifications are now consolidated under Hybrid Cloud Console > User Preferences > Email Preferences. Weekly report configuration and event notifications (e.g. instant and daily digest) can all be configured in the same location. This enhancement was implemented based on feedback received from customers for ease of use.

7.2. Red Hat Insights for Red Hat Enterprise Linux

7.2.1. Advisor

Chapter 8. August 2023

8.1. Red Hat Hybrid Cloud Console

8.1.1. Published Blogs and Resources

8.1.2. General

New RHEL management capabilities are GA

At Red Hat Summit, you heard the announcement about the expansion of Insights beyond analytics. Red Hat designed the new and enhanced management capabilities to help reduce enterprise Linux complexity across the hybrid cloud without slowing innovation. With this release, all the Insights features and enhancements announced at Red Hat Summit are generally available (GA).

Additional resources

8.2. Red Hat Insights for Red Hat Enterprise Linux

8.2.1. Advisor

Export recommendations for a single system

You can now export a list of recommendations for a single system to either CSV or JSON. This provides an easy way to create a to-do list if you have not adopted a more automated means of addressing found issues.

8.2.2. Drift and Policies

New systemd facts available for Drift and Policies

When setting up baselines and comparisons for system drift, or creating internal system policies, now you can access a set of systemd facts. These facts include systemd.failed, systemd.jobs_queued, and `systemd.state.

8.2.3. Image Builder

Now Generally Available (GA)!

With the latest Insights Image Builder, you can add third-party Red Hat Package Manager (RPM) repositories to include third-party software and deploy hosts to the cloud easily by launching custom image builds directly to AWS, Azure, and Google Cloud.

Providing feedback on Red Hat documentation

We appreciate and prioritize your feedback regarding our documentation. Provide as much detail as possible, so that your request can be quickly addressed.

Prerequisites

  • You are logged in to the Red Hat Customer Portal.

Procedure

To provide feedback, perform the following steps:

  1. Click the following link: Create Issue
  2. Describe the issue or enhancement in the Summary text box.
  3. Provide details about the issue or requested enhancement in the Description text box.
  4. Type your name in the Reporter text box.
  5. Click the Create button.

This action creates a documentation ticket and routes it to the appropriate documentation team. Thank you for taking the time to provide feedback.

Legal Notice

Copyright © 2024 Red Hat, Inc.
The text of and illustrations in this document are licensed by Red Hat under a Creative Commons Attribution–Share Alike 3.0 Unported license ("CC-BY-SA"). An explanation of CC-BY-SA is available at http://creativecommons.org/licenses/by-sa/3.0/. In accordance with CC-BY-SA, if you distribute this document or an adaptation of it, you must provide the URL for the original version.
Red Hat, as the licensor of this document, waives the right to enforce, and agrees not to assert, Section 4d of CC-BY-SA to the fullest extent permitted by applicable law.
Red Hat, Red Hat Enterprise Linux, the Shadowman logo, the Red Hat logo, JBoss, OpenShift, Fedora, the Infinity logo, and RHCE are trademarks of Red Hat, Inc., registered in the United States and other countries.
Linux® is the registered trademark of Linus Torvalds in the United States and other countries.
Java® is a registered trademark of Oracle and/or its affiliates.
XFS® is a trademark of Silicon Graphics International Corp. or its subsidiaries in the United States and/or other countries.
MySQL® is a registered trademark of MySQL AB in the United States, the European Union and other countries.
Node.js® is an official trademark of Joyent. Red Hat is not formally related to or endorsed by the official Joyent Node.js open source or commercial project.
The OpenStack® Word Mark and OpenStack logo are either registered trademarks/service marks or trademarks/service marks of the OpenStack Foundation, in the United States and other countries and are used with the OpenStack Foundation's permission. We are not affiliated with, endorsed or sponsored by the OpenStack Foundation, or the OpenStack community.
All other trademarks are the property of their respective owners.