Today we are proud to announce that the latest version of CloudForms is available. This release takes several steps further down the road towards managing hybrid IT. We’ve added new cloud platform providers, software defined networking (SDN) management and made it all easier to automate IT processes by integrating Ansible Tower playbook execution. In short, you will find this release greatly expands the breadth of CloudForms while making it easier than ever to set up and automate your IT operations.
If you are using CloudForms, you might notice that there is a tab called Red Hat Insights.
What is Red Hat Insights? It’s a Software as a Service (SaaS) offering that helps you proactively identify and resolve technical risks in your IT infrastructure before they negatively impact your whole environment. Insights enables you to identify potential outages and fix things faster using verified solutions that are analyzed against Red Hat’s knowledge base. It has been included as a Technology Preview in CloudForms since version 4.0.
To recuperate costs from running a cloud infrastructure, IT organizations often need to charge users for virtual machines they have provisioned. CloudForms contains chargeback functionality that helps facilitate charging users for the resources their virtual machines use. The administrator is able to set rates based on compute, network, and storage resources. Reports can then be run to calculate the chargeback for each virtual machine.
The recent discovery of a protocol flaw on Samba server (see CVE-2016-2118) raises once again the question of managing security and compliance of systems. How can we identify easily which systems are affected? And, how can we validate that these environments are correctly patched?
As you have probably noticed by now, the attack on OpenSSL known as DROWN – Decrypting RSA using Obsolete and Weakened eNcryption has recently been discovered. Red Hat Product Security have provided patches for OpenSSL and recommend to apply them to affected systems.
In this post, we will discuss how Red Hat CloudForms and ManageIQ can assist in identifying environments at risk of the DROWN OpenSSL cross-protocol vulnerability. In addition, CloudForms can audit your environments and validate that the patches have been applied.
How can Red Hat CloudForms help?
CloudForms provides a policy based compliance check which can be used to verify software and configuration of servers and validate security requirements. These policies are created as a combination of an event, a condition and an action, and use a scope (usually set to infrastructure or guests) to determine if the policy needs to run. Additional information on using policies can be found in the product documentation: Defining policies and profiles.
Of the many improvements and feature enhancements made to Cloud Forms 4.0, one focus was on performance and scalability. One of the first tasks a Cloud Forms Administrator performs while managing a Hybrid cloud is inventory of the environment. Also known as refresh, this task is essential to managing various environments and provides valuable information on every object within the Cloud Forms VMDB.
A recent post here http://cloudformsnow.com/2015/11/08/red-hat-cloudforms-4-0-public-beta-2/ detailed how in CloudForms 4.0 due in Dec15 will introduce a new Self Service UI. This article is a brief first glimpse at the UI.
Thought I would write a blog about CloudForms 4.0, which I am the Product Manager for. I am mega proud and thankful of the engineering effort in the community and at Red Hat. Here are some insights into whats in the drop, whats coming for General Release in early December.
If you have been keeping up-to-date with the ManageIQ sprints on youtube (https://www.youtube.com/user/ManageIQVideo) you would have seen some mega additions to the platform, also the community has a changelog for their Capablanca release that serves as the base for Red Hat CloudForms 4.0 here https://github.com/ManageIQ/manageiq/blob/master/CHANGELOG.md