RH124 - ch16s05

After completing this section, you should be able to use Red Hat Insights to analyze servers for issues, remediate or resolve them, and confirm the solution worked.

Introducing Red Hat Insights

Red Hat Insights is a predictive analytics tool to help you identify and remediate threats to security, performance, availability, and stability on systems in your infrastructure running Red Hat products. Insights is delivered as a Software-as-a-Service (SaaS) product, so that you can deploy and scale it quickly with no additional infrastructure requirements. In addition, you can immediately take advantage of the latest recommendations and updates from Red Hat specific to your deployed systems.

Red Hat regularly updates the knowledge base used by Insights, based on common support risks, security vulnerabilities, known-bad configurations, and other issues identified by Red Hat. Actions to mitigate or remediate these issues are validated and verified by Red Hat. This support allows you to proactively identify, prioritize, and resolve issues before they become a larger problem.

For each detected issue, Insights provides estimates of the risk presented and recommendations on how to mitigate or remediate the problem. These recommendations may provide materials such as Ansible Playbooks or human-readable step-by-step instructions to help you resolve the issue.

Insights tailors recommendations to each system registered to the service. You install each client system with an agent that collects metadata about the runtime configuration of the system. This data is a subset of what you might provide to Red Hat Support using the sosreport command in order to resolve a support ticket. You can limit or obfuscate the data that your clients send. This blocks some of the analytic rules from operating, depending on what you limit.

Almost immediately after you register a server and it completes the initial system metadata synchronization, you should be able to see your server and any recommendations for it in the Insights console in Red Hat Cloud Portal.

Insights currently provides predictive analytics and recommendations for these Red Hat products:

Red Hat Enterprise Linux 6.4 and later
Red Hat Virtualization 4 and later
Red Hat OpenShift Container Platform
Red Hat OpenStack Platform 7 and later

Describing the Insights Architecture

When you register a system with Insights, it immediately sends metadata about its current configuration to the Insights platform. After registration, the system periodically updates the metadata provided to Insights. The system sends the metadata using TLS encryption to protect it in transit.

When Insights receives the data, it analyses it and displays the result on the Insights web console at https://cloud.redhat.com/insights.

Figure 16.34: Insights high-level architecture

Installing Insights Clients

Insights is included with Red Hat Enterprise Linux 8 as part of the subscription. Earlier versions of Red Hat Enterprise Linux servers require installing the insights-client package on the system.

Important

The insights-client package replaces the redhat-access-insights package starting with Red Hat Enterprise Linux 7.5.

If your system is registered for software entitlements through the Customer Portal Subscription Management service, you can activate Insights with one command. Use the insights-client --register command to register the system.

[root@host ~]# insights-client --register

The Insights client periodically updates the metadata provided to Insights. Use the insights-client command to refresh the client's metadata at any time.

[root@host ~]# insights-client
Starting to collect Insights data for host.example.com
Uploading Insights data.
Successfully uploaded report for host.example.com.
View details about this system on cloud.redhat.com:
https://cloud.redhat.com/insights/inventory/dc480efd-4782-417e-a496-cb33e23642f0

Registering a RHEL System with Insights

To register a RHEL server to Insights, the process is as follows:

Interactively register the system with the Red Hat Subscription Management service.
```
[root@host ~]# subscription-manager register --auto-attach
```
Make sure that the insights-client package is installed on the system. In RHEL 7, this package is in the rhel-7-server-rpms channel.
Note
This step is not required on Red Hat Enterprise Linux 8 systems.
```
[root@host ~]# yum install insights-client
```
Use the insights-client --register command to register the system with the Insights service and upload initial system metadata.
```
[root@host ~]# insights-client --register
```
Confirm that the system is visible under Inventory in the Insights web console at https://cloud.redhat.com/insights.
Figure 16.35: Insights Inventory on the Cloud Portal

Navigating the Insights Console

Insights provides a family of services that you access through the web console at https://cloud.redhat.com/insights.

Detecting Configuration Issues Using the Advisor Service

The Advisor service reports configuration issues that impact your systems. You access the service from the Advisor → Recommentations menu.

Figure 16.36: Recommendations from the Advisor Service

For each issue, Insights provides additional information to help you understand the problem, prioritize work to address it, determine what mitigation or remediation is available, and automate resolution with an Ansible Playbook. Insights also provides links to Knowledgebase articles on the Customer Portal.

Figure 16.37: Details of an Issue

The Advisor service evaluates the risk that an issue presents to your system in two categories.

Total risk: Indicates the impact of the issue on your system.
Risk of change: Indicates the impact of the remediation action to your system. For example, you may have to restart the system.

Assessing Security Using the Vulnerability Service

The Vulnerability service reports Common Vulnerabilities and Exposures (CVEs) that impact your systems. You access the service from the Vulnerability → CVEs menu.

Figure 16.38: Report from the Vulnerability Service

For each CVE, Insights provides additional information and lists the exposed systems. You can click Remediate to create an Ansible Playbook for remediation.

Figure 16.39: Details of a CVE

Analyzing Compliance Using the Compliance Service

The Compliance service analyses your systems and reports their compliance level to an OpenSCAP policy. The OpenSCAP project implements tools to check the compliance of a system against a set of rules. Insights provides the rules to evaluate your systems against different policies, such as the Payment Card Industry Data Security Standard (PCI DSS).

Updating Packages Using the Patch Service

The Patch service lists the Red Hat Product Advisories applicable to your systems. It can also generate an Ansible Playbook that you can run to update the RPM packages associated with the applicable advisories. To access the list of advisories for a specific system, use the Patch → Systems menu. Click Apply all applicable advisories for a system to generate the Ansible Playbook.

Figure 16.40: Patching a System

Comparing Systems Using the Drift Service

Using the Drift service, you can compare systems, or a system history. This service can help you troubleshoot a system by comparing that system to a similar system, or to a previous system state. You access the service from the Drift → Comparison menu.

Figure 16.41: Comparing a System History

In the preceding screen capture, Insights compares the same system at two different times.

Triggering Alerts Using the Policies Service

Using the Policies service, you create rules to monitor your systems and send alerts when a system does not comply with your rules. Insights evaluates the rules every time a system synchronizes its metadata. You access the service from the Policies menu.

Figure 16.42: Details of a Custom Rule

Accessing the Inventory and the Remediation Playbooks, and Monitoring Subscriptions

The Inventory page provides a list of the systems you have registered with Red Hat Insights. The Last seen column displays the time of the most recent metadata update for each system. By clicking a system name, you can review its details and directly access the Advisor, Vulnerability, Compliance, and Patch services for that system.

The Remediations page lists all the Ansible Playbooks that you created for remediation. You can download the playbooks from that page.

Using the Subscription Watch page, you can monitor your Red Hat subscription usage.

References

insights-client(8) and insights-client.conf(5) man pages

For more information about Red Hat Insights, refer to the Product Documentation for Red Hat Insights at https://access.redhat.com/documentation/en-us/red_hat_insights

For more information on excluding data collected by Insights, refer to the Red Hat Insights client data obfuscation and Red Hat Insights client data redaction chapters in the Client Configuration Guide for Red Hat Insights at https://access.redhat.com/documentation/en-us/red_hat_insights/2020-04/html-single/client_configuration_guide_for_red_hat_insights/index

Information on the data collected by Red Hat Insights is available at System Information Collected by Red Hat Insights

Discuss Red Hat System Administration I

Go to community

RH124 Chapter 15 Lab 3: Install zsh Package

VictoriaB97

16 sty 2024

Hello,I am trying to finish up Lab 3 of the Chapter 15 Comprehensive Review Labs in RH124, and when I type in sudo dnf install zsh for the 6th specification of the lab, I get an error message basically saying that it failed to download metadata for the repo 'ansible-2.9-for-rhel-9-x86_64-rpms', and that they could not download repomd.xml. It provided a 404 status code.Can someone please let me know what the problem is, and if there is a current workaround? Thanks.

378

Red Hat System Administration I | Guided Exercise: Explain and Investigate RPM Software Pack

AbeHiero

10 lis 2023

I cannot start the lab with command: lab start software-rpm. I get this error:ModuleNotFoundError: No module named 'rhcsa-classroom'Script software-rpm not in course library rhcsa-classroom Anyone else see this?

172

Red Hat System Administration I (RH124)

Haley_Ruccio

19 lip 2023

The first of two courses covering the core system administration tasks needed to manage Red Hat Enterprise Linux serversRed Hat System Administration I (RH124) is designed for IT professionals without previous Linux system administration experience. The course provides students with Linux administration competence by focusing on core administration tasks. This course also provides a foundation for students who plan to become full-time Linux system administrators by introducing key command-line concepts and enterprise-level tools. This course is the first of a two-course series that takes a computer professional without Linux system administration knowledge to become a fully capable Linux administrator. These concepts are further developed in the follow-on course, Red Hat System Administration II (RH134).This course is based on Red Hat® Enterprise Linux 9.0.Course content summaryIntroduce Linux and the Red Hat Enterprise Linux ecosystem.Run commands and view shell environments.Manage, organize, and secure files.Manage users, groups and user security policies.Control and monitor systemd services.Configure remote access using the web console and SSH.Configure network interfaces and settings.Manage software using DNFAudience for this courseThe primary persona is a technical professional with current or pending responsibilities as a Linux enterprise or cloud system administrator.This course is popular in Red Hat Academy, and is targeted at the student who is planning to become a technical professional using Linux.Prerequisites for this courseBasic technical user skills with computer applications on some operating systems are expected.Take our free assessment to gauge whether this offering is the best fit for your skills.Technology considerationsThere are no special technical requirements for this course.This course is not designed for bring your own device (BYOD).Internet access is not required but is recommended so that students can research and browse Red Hat online resources.

336

Revision: rh124-8.2-df5a585

Red Hat System Administration I

Detecting and Resolving Issues with Red Hat Insights

Objectives