Troubleshooting the File Integrity Operator

    You want to generally troubleshoot issues with the File Integrity Operator.

    Resolution

    Enable the debug flag in the object. The debug flag increases the verbosity of the daemons that run in the DaemonSet pods and run the AIDE checks.

    Issue

    You want to check the AIDE configuration.

    The AIDE configuration is stored in a config map with the same name as the FileIntegrity object. All AIDE configuration config maps are labeled with .

    Issue

    You want to determine if the FileIntegrity object exists and see its current status.

    Resolution

    To see the FileIntegrity object’s current status, run:

    Issue

    You want to confirm that the daemon set exists and that its pods are running on the nodes you expect them to run on.

    Resolution

    Run:

    1. $ oc -n openshift-file-integrity get pods -lapp=aide-worker-fileintegrity

    Check the return value of the AIDE command to see if the check passed or failed.