Bug 1464420 - [RFE] OpenSCAP Information in CFME not easily consumable
[RFE] OpenSCAP Information in CFME not easily consumable
Status: NEW
Product: Red Hat CloudForms Management Engine
Classification: Red Hat
Component: SmartState Analysis (Show other bugs)
5.8.0
Unspecified Unspecified
unspecified Severity unspecified
: GA
: cfme-future
Assigned To: Loic Avenel
Dave Johnson
container:smartstate
: FutureFeature
Depends On:
Blocks:
  Show dependency treegraph
 
Reported: 2017-06-23 07:54 EDT by Lutz Lange
Modified: 2017-06-26 01:45 EDT (History)
6 users (show)

See Also:
Fixed In Version:
Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of:
Environment:
Last Closed:
Type: Bug
Regression: ---
Mount Type: ---
Documentation: ---
CRM:
Verified Versions:
Category: ---
oVirt Team: ---
RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: Container Management


Attachments (Terms of Use)

  None (edit)
Description Lutz Lange 2017-06-23 07:54:35 EDT
Description of problem:
If you are using the OpenSCAP scanner in CFME you get :

1. OpenSCAP Results page. 
The info therein does list the name of the OpenSCAP rules. There is no value that I can see from that info besides debugging the OpenSCAP profile. 

2. OpenSCAP HTML results
This is the only place where you can find the important info on the results. That is lines like this "RHSA-2017:0295: kernel-rt security update (Important)".

You still have to load that big page and filter this to find out what failed.
And then you have to search for the Advisory on the Red Hat Pages to make sense of the findings.

There are two possible pages for this : 
https://access.redhat.com/errata/RHSA-2017:0295
https://rhn.redhat.com/errata/RHSA-2017-0295.html

The second page has more details than the first, though I do not know if it will be around for a long while.

3. OpenSCAP Failed Rules Summary 
There is the Summary. It does not have any details like 1. and 2. There is a need to be able to go quickly to the Advisory Web Pages 

Version-Release number of selected component (if applicable):
CFMC 5.8. OCP 3.5

How reproducible:
Scan a workload and try to find out what failed and what this really means for your workloads.

See also section 7 in https://github.com/LutzLange/OpenShift-Labs/blob/master/OpenShift-Lab.adoc for more Details.

Digest :
   One way to imporve would be to link to the Red Hat Advisor Pages for failed scans.

Note You need to log in before you can comment on or make changes to this bug.