Red Hat Bugzilla – Bug 1463444
[RFE] Host ACTION for running adhoc openscap scans on hosts
Last modified: 2017-06-21 03:11:47 EDT
Description of problem:
Right now we can schedule a openscap scan but can't trigger one at will.
Version-Release number of selected component (if applicable):
Once I have assigned a policy and [cronjob] schedule to a host, there's no way to trigger an adhoc scan. I currently have to ssh in to the client/host and run
to get the policy number. I then have to run
foreman_scap_client <policy number>
to get the scan to upload to my satellite server.
To make this more seamless in satellite, I just created a 'Run Command - SSH Default through SSH' with this command 'foreman_scap_client 1' and I can execute it against the machine without having to do the above. NOTE: This assumes '1' is the intended policy number.
There should be a openscap scan ACTION after assigning a policy(ies) to a host.
it would be nice if the documentation told me I needed to open port 9090 on the satellite server to get this to work. Fortunately, the foreman_scap_client command will complain that the port isn't open and then I manually opened it.
Thank you for submitting this request. We already track a similar item, therefore I will mark this as a duplicate. Feel free to reopen if I misunderstood and the linked issue does not cover your use case.
*** This bug has been marked as a duplicate of bug 1339715 ***