RH199 - ch01s07

Course update

An updated version of this course is available that uses a newer version of Red Hat Enterprise Linux in the lab environment. Therefore, the RHEL 9.0 version of the lab environment will retire on December 31, 2024. Please complete any work in this lab environment before it is removed on December 31, 2024. For the most up-to-date version of this course, we recommend moving to the RHEL 9.3 version.

Preface A: Introduction

Section A.1: RHCSA Rapid Track

Section A.2: Orientation to the Classroom Environment

Section A.3: Performing Lab Exercises

Chapter 1: Access Systems and Get Support

Section 1.1: Edit Text Files from the Shell Prompt

Section 1.2: Guided Exercise: Edit Text Files from the Shell Prompt

Section 1.3: Configure SSH Key-based Authentication

Section 1.4: Guided Exercise: Configure SSH Key-based Authentication

Section 1.5: Create a Diagnostics Report

Section 1.6: Guided Exercise: Create a Diagnostics Report

SectionSection 1.7: Detect and Resolve Issues with Red Hat Insights

Section 1.8: Quiz: Detect and Resolve Issues with Red Hat Insights

Section 1.9: Summary

Chapter 2: Manage Files from the Command Line

Section 2.1: Describe Linux File System Hierarchy Concepts

Section 2.2: Quiz: Describe Linux File System Hierarchy Concepts

Section 2.3: Make Links Between Files

Section 2.4: Guided Exercise: Make Links Between Files

Section 2.5: Match File Names with Shell Expansions

Section 2.6: Quiz: Match File Names with Shell Expansions

Section 2.7: Lab: Manage Files from the Command Line

Section 2.8: Summary

Chapter 3: Manage Local Users and Groups

Section 3.1: Describe User and Group Concepts

Section 3.2: Quiz: Describe User and Group Concepts

Section 3.3: Gain Superuser Access

Section 3.4: Guided Exercise: Gain Superuser Access

Section 3.5: Manage Local User Accounts

Section 3.6: Guided Exercise: Manage Local User Accounts

Section 3.7: Manage Local Group Accounts

Section 3.8: Guided Exercise: Manage Local Group Accounts

Section 3.9: Manage User Passwords

Section 3.10: Guided Exercise: Manage User Passwords

Section 3.11: Lab: Manage Local Users and Groups

Section 3.12: Summary

Chapter 4: Control Access to Files

Section 4.1: Manage File System Permissions from the Command Line

Section 4.2: Guided Exercise: Manage File System Permissions from the Command Line

Section 4.3: Manage Default Permissions and File Access

Section 4.4: Guided Exercise: Manage Default Permissions and File Access

Section 4.5: Lab: Control Access to Files

Section 4.6: Summary

Chapter 5: Manage SELinux Security

Section 5.1: Change the SELinux Enforcement Mode

Section 5.2: Guided Exercise: Change the SELinux Enforcement Mode

Section 5.3: Control SELinux File Contexts

Section 5.4: Guided Exercise: Control SELinux File Contexts

Section 5.5: Adjust SELinux Policy with Booleans

Section 5.6: Guided Exercise: Adjust SELinux Policy with Booleans

Section 5.7: Investigate and Resolve SELinux Issues

Section 5.8: Guided Exercise: Investigate and Resolve SELinux Issues

Section 5.9: Lab: Manage SELinux Security

Section 5.10: Summary

Chapter 6: Tune System Performance

Section 6.1: Kill Processes

Section 6.2: Guided Exercise: Kill Processes

Section 6.3: Monitor Process Activity

Section 6.4: Guided Exercise: Monitor Process Activity

Section 6.5: Adjust Tuning Profiles

Section 6.6: Guided Exercise: Adjust Tuning Profiles

Section 6.7: Influence Process Scheduling

Section 6.8: Guided Exercise: Influence Process Scheduling

Section 6.9: Lab: Tune System Performance

Section 6.10: Summary

Chapter 7: Schedule Future Tasks

Section 7.1: Schedule Recurring User Jobs

Section 7.2: Guided Exercise: Schedule Recurring User Jobs

Section 7.3: Schedule Recurring System Jobs

Section 7.4: Guided Exercise: Schedule Recurring System Jobs

Section 7.5: Manage Temporary Files

Section 7.6: Guided Exercise: Manage Temporary Files

Section 7.7: Quiz: Schedule Future Tasks

Section 7.8: Summary

Chapter 8: Install and Update Software Packages

Section 8.1: Register Systems for Red Hat Support

Section 8.2: Quiz: Register Systems for Red Hat Support

Section 8.3: Install and Update Software Packages with DNF

Section 8.4: Guided Exercise: Install and Update Software Packages with DNF

Section 8.5: Enable DNF Software Repositories

Section 8.6: Guided Exercise: Enable DNF Software Repositories

Section 8.7: Lab: Install and Update Software Packages

Section 8.8: Summary

Chapter 9: Manage Basic Storage

Section 9.1: Mount and Unmount File Systems

Section 9.2: Guided Exercise: Mount and Unmount File Systems

Section 9.3: Add Partitions, File Systems, and Persistent Mounts

Section 9.4: Guided Exercise: Add Partitions, File Systems, and Persistent Mounts

Section 9.5: Manage Swap Space

Section 9.6: Guided Exercise: Manage Swap Space

Section 9.7: Lab: Manage Basic Storage

Section 9.8: Summary

Chapter 10: Manage Storage Stack

Section 10.1: Create and Extend Logical Volumes

Section 10.2: Guided Exercise: Create and Extend Logical Volumes

Section 10.3: Lab: Manage Storage Stack

Section 10.4: Summary

Chapter 11: Control Services and Boot Process

Section 11.1: Identify Automatically Started System Processes

Section 11.2: Guided Exercise: Identify Automatically Started System Processes

Section 11.3: Control System Services

Section 11.4: Guided Exercise: Control System Services

Section 11.5: Select the Boot Target

Section 11.6: Guided Exercise: Select the Boot Target

Section 11.7: Reset the Root Password

Section 11.8: Guided Exercise: Reset the Root Password

Section 11.9: Repair File-system Issues at Boot

Section 11.10: Guided Exercise: Repair File-system Issues at Boot

Section 11.11: Lab: Control the Boot Process

Section 11.12: Summary

Chapter 12: Analyze and Store Logs

Section 12.1: Describe System Log Architecture

Section 12.2: Quiz: Describe System Log Architecture

Section 12.3: Review Syslog Files

Section 12.4: Guided Exercise: Review Syslog Files

Section 12.5: Review System Journal Entries

Section 12.6: Guided Exercise: Review System Journal Entries

Section 12.7: Preserve the System Journal

Section 12.8: Guided Exercise: Preserve the System Journal

Section 12.9: Maintain Accurate Time

Section 12.10: Guided Exercise: Maintain Accurate Time

Section 12.11: Lab: Analyze and Store Logs

Section 12.12: Summary

Chapter 13: Manage Networking

Section 13.1: Validate Network Configuration

Section 13.2: Guided Exercise: Validate Network Configuration

Section 13.3: Configure Networking from the Command Line

Section 13.4: Guided Exercise: Configure Networking from the Command Line

Section 13.5: Edit Network Configuration Files

Section 13.6: Guided Exercise: Edit Network Configuration Files

Section 13.7: Configure Hostnames and Name Resolution

Section 13.8: Guided Exercise: Configure Hostnames and Name Resolution

Section 13.9: Lab: Manage Networking

Section 13.10: Summary

Chapter 14: Access Network-Attached Storage

Section 14.1: Manage Network-Attached Storage with NFS

Section 14.2: Guided Exercise: Manage Network-Attached Storage with NFS

Section 14.3: Automount Network-Attached Storage

Section 14.4: Guided Exercise: Automount Network-Attached Storage

Section 14.5: Lab: Access Network-Attached Storage

Section 14.6: Summary

Chapter 15: Manage Network Security

Section 15.1: Manage Server Firewalls

Section 15.2: Guided Exercise: Manage Server Firewalls

Section 15.3: Control SELinux Port Labeling

Section 15.4: Guided Exercise: Control SELinux Port Labeling

Section 15.5: Lab: Manage Network Security

Section 15.6: Summary

Chapter 16: Run Containers

Section 16.1: Container Concepts

Section 16.2: Quiz: Container Concepts

Section 16.3: Deploy Containers

Section 16.4: Guided Exercise: Deploy Containers

Section 16.5: Manage Container Storage and Network Resources

Section 16.6: Guided Exercise: Manage Container Storage and Network Resources

Section 16.7: Manage Containers as System Services

Section 16.8: Guided Exercise: Manage Containers as System Services

Section 16.9: Lab: Run Containers

Section 16.10: Summary

Chapter 17: Comprehensive Review

Section 17.1: Comprehensive Review

Section 17.2: Lab: Fix Boot Issues and Maintain Servers

Section 17.3: Lab: Configure and Manage File Systems and Storage

Section 17.4: Lab: Configure and Manage Server Security

Section 17.5: Lab: Run Containers

Bookmark this page

P 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17

Detect and Resolve Issues with Red Hat Insights

Objectives

Use Red Hat Insights to analyze servers for issues, remediate or resolve them, and confirm that the solution worked.

Introduction to Red Hat Insights

Red Hat Insights is a predictive analytics tool to help you to identify and remediate threats to security, performance, availability, and stability on systems in your infrastructure that run Red Hat products. Red Hat delivers Red Hat Insights as a Software-as-a-Service (SaaS) product, so that you can deploy and scale it with no additional infrastructure requirements. In addition, you can take advantage of the latest recommendations and updates from Red Hat that apply to your deployed systems.

Red Hat regularly updates the knowledge base, based on common support risks, security vulnerabilities, known-bad configurations, and other issues that Red Hat identifies. Red Hat validates and verifies the actions to mitigate or remediate these issues. With this support, you can proactively identify, prioritize, and resolve issues before they become a larger problem.

For each detected issue, Red Hat Insights provides risk estimates and recommendations on how to mitigate or remediate the problem. These recommendations might suggest materials such as Ansible Playbooks, or provide step-by-step instructions to help you to resolve the issue.

Red Hat Insights tailors recommendations to each system that you register to the service. To start using Red Hat Insights, install the agent in each client system to collect metadata about the runtime configuration of the system. This data is a subset of what you might provide to Red Hat Support by using the sosreport command to resolve a support ticket.

You can limit or obfuscate the data that your client systems send. By limiting the data, you might block some analytic rules from operating, depending on what you limit.

After you register a server and it completes the initial system metadata synchronization, you should be able to see your server and any recommendations for it in the Insights console in the Red Hat Cloud Portal.

Red Hat Insights currently provides predictive analytics and recommendations for these Red Hat products:

Red Hat Enterprise Linux 6.4 and later
Red Hat Virtualization
Red Hat Satellite 6 and later
Red Hat OpenShift Container Platform
Red Hat OpenStack Platform 7 and later
Red Hat Ansible Automation Platform

Red Hat Insights Architecture Description

When you register a system with Red Hat Insights, it immediately sends metadata about its current configuration to the Red Hat Insights platform. After registration, the system periodically updates the metadata that it provides to Red Hat Insights. The system sends the metadata with TLS encryption to protect it in transit.

The Red Hat Insights platform analyzes the received data, and displays the result on the https://console.redhat.com/insights site.

Figure 1.7: Insights high-level architecture

Install Red Hat Insights Clients

Insights is included with Red Hat Enterprise Linux 9 as part of the subscription. Earlier versions of Red Hat Enterprise Linux servers require installing the insights-client package on the system. The insights-client package replaced the redhat-access-insights package starting with Red Hat Enterprise Linux 7.5. The following section provides a detailed orientation to install the insights-client package and to register your system to Red Hat Insights.

The Insights client periodically updates the metadata that is provided to Insights. Use the insights-client command to refresh the client's metadata.

[root@host ~]# insights-client
Starting to collect Insights data for host.example.com
Uploading Insights data.
Successfully uploaded report from host.example.com to account 1460291.
View details about this system on console.redhat.com:
https://console.redhat.com/insights/inventory/dc480efd-4782-417e-a496-cb33e23642f0

Register a RHEL System with Red Hat Insights

Registering a RHEL server to Red Hat Insights is a quick task.

Interactively register the system with the Red Hat Subscription Management service.

[root@host ~]# subscription-manager register --auto-attach

Ensure that the insights-client package is installed on your system. The package is installed by default on RHEL 8 and later systems.

[root@host ~]# dnf install insights-client

Use the insights-client --register command to register the system with the Insights service and to upload initial system metadata.

[root@host ~]# insights-client --register

On Red Hat Insights (https://console.redhat.com/insights), ensure that you are logged in and that the system is visible under the Inventory section of the web UI.

Figure 1.8: Insights inventory on the Cloud Portal

Red Hat Insights Console Navigation

Red Hat Insights provides a family of services that you access with a web browser at the https://console.redhat.com/insights website.

Detect Configuration Issues with the Advisor Service

The Advisor service reports configuration issues that impact your systems. You can access the service from the Advisor → Recommendations menu.

Figure 1.9: Recommendations from the Advisor Service

For each issue, Red Hat Insights provides information to help you to understand the problem, prioritize work to address it, determine what mitigation or remediation is available, and automate resolution with an Ansible Playbook. Red Hat Insights also provides links to Knowledgebase articles on the Customer Portal.

Figure 1.10: Details of an issue

The Advisor service evaluates in two categories the risk that an issue presents to your system:

Total risk: Indicates the impact of the issue on your system.
Risk of change: Indicates the impact of the remediation action to your system. For example, you might need to restart the system.

Assess Security with the Vulnerability Service

The Vulnerability service reports common vulnerabilities and exposures (CVEs) that impact your systems. You access the service from the Vulnerability → CVEs menu.

Figure 1.11: Report from the Vulnerability service

For each CVE, Insights provides additional information and lists the exposed systems. You can click the Remediate button to create an Ansible Playbook for remediation.

Figure 1.12: Details of a CVE

Analyze Compliance by Using the Compliance Service

The Compliance service analyzes your systems and reports their compliance level to an OpenSCAP policy. The OpenSCAP project implements tools to verify the compliance of a system against a set of rules. Red Hat Insights provides the rules to evaluate your systems against different policies, such as the Payment Card Industry Data Security Standard (PCI DSS).

Update Packages with the Patch Service

The Patch service lists the Red Hat Product Advisories that apply to your systems. It can also generate an Ansible Playbook, which you can run to update the relevant RPM packages for the applicable advisories. To access the list of advisories for a specific system, use the Patch → Systems menu. Click the Apply all applicable advisories button to generate the Ansible Playbook for a system.

Figure 1.13: Patching a system

Compare Systems with the Drift Service

With the Drift service, you can compare systems, or obtain a system history. You can use this service for troubleshooting, by comparing a system to a similar system, or to a previous system state. You can access the service from the Drift → Comparison menu.

The following figure shows that you can use Red Hat Insights to compare the same system at two different times:

Figure 1.14: Comparing system history

Trigger Alerts with the Policies Service

By using the Policies service, you can create rules to monitor your systems and send alerts when a system does not comply with your rules. Red Hat Insights evaluates the rules every time that a system synchronizes its metadata. You can access the Policies service from the Policies menu.

Figure 1.15: Details of a custom rule

Inventory, Remediation Playbooks, and Subscriptions Monitoring

The Inventory page provides a list of the systems that you registered with Red Hat Insights. The Last seen column displays the time of the most recent metadata update for each system. By clicking a system name, you can review its details and directly access the Advisor, Vulnerability, Compliance, and Patch services for that system.

The Remediations page lists all the Ansible Playbooks that you created for remediation. You can download the playbooks from that page.

By using the Subscription page, you can monitor your Red Hat subscription usage.

References

insights-client(8) and insights-client.conf(5) man pages

For more information about Red Hat Insights, refer to the Product Documentation for Red Hat Insights at https://access.redhat.com/documentation/en-us/red_hat_insights

For more information about excluding data that Insights collects, refer to the Red Hat Insights Client Data Obfuscation and Red Hat Insights Client Data Redaction chapters in the Client Configuration Guide for Red Hat Insights at https://access.redhat.com/documentation/en-us/red_hat_insights/2021/html-single/client_configuration_guide_for_red_hat_insights/assembly-main-client-cg

Information about the data that Red Hat Insights collects is available at System Information Collected by Red Hat Insights

Revision: rh199-9.0-4fecb06