Feature Overview 

The integration of Red Hat Insights with Red Hat OpenStack services on OpenShift enhances proactive security and configuration management for OpenStack workloads running on OpenShift. As the OpenStack control plane is now a workload within OpenShift, leveraging Insights Advisor’s Workloads recommendations provides operators with valuable insights into their OpenStack control plane configurations.

Insights Advisor offers checks to identify security misconfigurations and enforce DevOps best practices early and frequently. By incorporating this integration, operators can prevent downtime, mitigate security risks, and streamline upgrade processes by ensuring configurations adhere to best practices.

Goals

• Provide configuration validation for OpenStack deployments.
• Enable proactive identification and remediation of misconfigurations that could lead to downtime or security vulnerabilities.
• Enable administrators to act on prescriptive guidance, reducing time to resolution.

Requirements :

Done - Acceptance Criteria (mandatory - Complete while in Refinement status):

• OpenStack control plane YAMLs are automatically analyzed by Insights Advisor.
• Users receive actionable recommendations for security and configuration improvements.

Use Cases - i.e. User Experience & Workflow: (Initial completion while in Refinement status):

Supportability Audit: As part of Red Hat’s Phase Gates process, a deployment undergoes an audit to determine if it meets Red Hat’s supportability criteria. Insights Advisor ensures that the deployment configuration aligns with Red Hat’s supported guidelines, providing automated feedback and necessary adjustments

Security Compliance Check: An OpenStack operator wants to ensure that all control plane pods are running with appropriate security configurations. Insights Advisor detects non-root execution violations and provides remediation steps.

Upgrade Preparation: Before upgrading OpenStack services, an operator runs Insights checks to verify configurations are optimal and aligned with best practices, preventing upgrade failures.

Out of Scope __(Initial completion while in Refinement status):

• Lorem Ipsum

Documentation Considerations __(Initial completion while in Refinement status):

New documentation required for enabling and using Insights Advisor for OpenStack workloads.

Questions to Answer __(Initial completion while in Refinement status):

1. Question 1

Background and Strategic Fit (Initial completion while in Refinement status):

With OpenStack control planes now running as workloads in OpenShift, integrating with Red Hat Insights strengthens proactive security and reliability measures. This feature aligns with Red Hat’s strategy of enhancing automation and security for cloud-native environments while improving OpenStack’s operational efficiency.

Customer Considerations __(Initial completion while in Refinement status):

• Customers need easy enablement and onboarding to leverage Insights Advisor for OpenStack.

• The solution should support air-gapped environments where Insights connectivity may be limited.

Team Sign Off (Completion while in Planning status)

• All required Epics (known at the time) are linked to the this Feature
• All required Stories, Tasks (known at the time) for the most immediate Epics have been created and estimated
• Add - Reviewers name, Team Name
• Acceptance == Feature as “Ready” - well understood and scope is clear - Acceptance Criteria (scope) is elaborated, well defined, and understood
• Note: Only set FixVersion/s: on a Feature if the delivery team agrees they have the capacity and have committed that capability for that milestone

• …