Uploaded image for project: 'Red Hat Advanced Cluster Security'
  1. Red Hat Advanced Cluster Security
  2. ROX-29575

Create an agent to collect data from virtual machines (VMs)

XMLWordPrintable

    • Icon: Epic Epic
    • Resolution: Done
    • Icon: Undefined Undefined
    • 4.9.0
    • None
    • None
    • VM Agent
    • Product / Portfolio Work
    • False
    • Hide

      None

      Show
      None
    • False
    • Not Selected
    • Done
    • ROX-27051 - Vulnerability Management in ACS for Virtual Machines running on OpenShift Virtualization platform (Dev Preview)
    • 0% To Do, 0% In Progress, 100% Done
    • Rox Sprint 4.10A - Global, Rox Sprint 4.9I - Global, Rox Sprint 4.10B, Rox Sprint 4.10C

      Overview:

      Create an agent that a customer would install on a VM to collect data from the VM and send it to ACS to populate ACS with data about this VM.

      Requirements:

      • Agent will be shipped as a container image
      • Customer will need install podman/docker to run this on non-RHEL or RHEL < 9.6
      • Consider using Podman Quadlet to run the agent as a daemon.
      • Agent will push data to ACS using its new standard interface

      Technical Scope:

      • Currently only collect data necessary to match CVEs by ACS Scanner, but the agent should be designed to make this data set expandable, e.g. process listing
      • Non-RHEL hosts are included in the scope, but if time runs out and they can't be supported, this can slip from the 4.9 release.

      Outstanding Questions (Optional):

      • What exactly needs to be collected to have ACS Scanner match vulnerabilities? Definitely RPM listing, possibly dnf repo info, anything else?

              shesselm@redhat.com Stephan Hesselmann
              rh-ee-klape Kyle Lape
              ACS Collector
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

                Created:
                Updated:
                Resolved: