Red Hat Bugzilla – Bug 1464420
[RFE] OpenSCAP Information in CFME not easily consumable
Last modified: 2017-06-26 01:45:48 EDT
Description of problem:
If you are using the OpenSCAP scanner in CFME you get :
1. OpenSCAP Results page.
The info therein does list the name of the OpenSCAP rules. There is no value that I can see from that info besides debugging the OpenSCAP profile.
2. OpenSCAP HTML results
This is the only place where you can find the important info on the results. That is lines like this "RHSA-2017:0295: kernel-rt security update (Important)".
You still have to load that big page and filter this to find out what failed.
And then you have to search for the Advisory on the Red Hat Pages to make sense of the findings.
There are two possible pages for this :
The second page has more details than the first, though I do not know if it will be around for a long while.
3. OpenSCAP Failed Rules Summary
There is the Summary. It does not have any details like 1. and 2. There is a need to be able to go quickly to the Advisory Web Pages
Version-Release number of selected component (if applicable):
CFMC 5.8. OCP 3.5
Scan a workload and try to find out what failed and what this really means for your workloads.
See also section 7 in https://github.com/LutzLange/OpenShift-Labs/blob/master/OpenShift-Lab.adoc for more Details.
One way to imporve would be to link to the Red Hat Advisor Pages for failed scans.