The `ensure_gpgcheck_repo_metadata` rule fails
During remediation of the `ensure_gpgcheck_repo_metadata` rule, certain profiles update the `yum.conf` file to enable the `repo_gpgcheck` option. Red Hat does not currently provide signed repository metadata. As a consequence, the *yum* utility is no longer able to install any package from official repositories. To work around the problem, use a tailoring file to remove `ensure_gpgcheck_repo_metadata` from the profile. If remediation already breaks the system, update `yum.conf` and set `repo_gpgcheck` to `0`.