Chapter 15. Installer and image creation

Redesigned the Time & Date spoke in the Installer GUI

The Time and Date spoke of the installer UI is now completely redesigned and does not have a map to select the timezone. For more information, see the installation documentation.

The initial-setup package now has been removed

The initial-setup package has been removed in Red Hat Enterprise Linux 10. As a replacement, use gnome-initial-setup for the graphical user interface.

For new storage devices, the LUKS2 version is used by default

By default, all the new storage devices are now encrypted with the LUKS2 version. No changes are made to the existing devices' LUKS version. You can use the Kickstart method to select different LUKS versions.

Adding additional repositories from GUI is now removed

Previously, when configuring the installation source, you were able to configure the additional repositories for the package installation. Starting RHEL 10, this support has been removed. However, you can use the Kickstart installation method or the inst.addrepo boot option if you want to specify additional repositories.

Anaconda built-in help has been removed

The built-in documentation from spokes and hubs of all Anaconda user interfaces, which was available during Anaconda installation, has been removed. For more information, see the official RHEL documentation.

New users created in Anaconda are administrators by default

Previously, while creating new users from the installer, the Make this user administrator option in graphical installation was deselected. Starting RHEL 10, this option is selected by default. As a result, the newly created users will have administrative privileges by default. You can deselect this option to remove the administrative privileges of the new users, if required.

Removed automatic bug reporting system from Anaconda

The installer no longer supports reporting problems to the Red Hat issue tracking system automatically. You can collect the installation logs and report problems manually, as described in the troubleshooting section.

Capturing screenshots from the Anaconda GUI with a global hot key is removed

Previously, you could capture screenshots of the Anaconda GUI by using a global hot key. This meant that users could extract the screenshots manually from the installation environment for any further usage. This functionality has been removed.

Remote Desktop Protocol (RDP) replaces VNC for graphical remote access

The protocol for graphical remote access has been changed from VNC to remote desktop protocol (RDP). RDP offers a reliable and encrypted connection, overcoming the limitations of VNC, which lacked encryption support and enforced password length restrictions. As part of this change, the following new kernel options have been introduced:

Removed NVDIMM reconfiguration support during the installation process

The support for reconfiguring NVDIMM devices during the Kickstart and GUI installation has been removed in RHEL 10. However, you can still use the NVDIMM devices in the sector mode in the installation program.

Removed inst.nompath, dmraid and nodmraid boot options

The inst.nompath, dmraid and nodmraid boot options have been removed now and are no longer available for use.

The inst.gpt boot option is now deprecated

The inst.gpt boot option is now deprecated and will be removed in the future major RHEL release. To specify a preferred disk label type, use the inst.disklabel boot option. To create GPT or MBR disk labels, specify gpt or mbr option respectively.

The inst.xdriver and inst.usefbx options have been removed

The graphical system for the installation image switched from the Xorg server to a Wayland compositor. As a consequence, the inst.xdriver boot option has been removed. Wayland operates without relying on X drivers, making it incompatible with loading any such drivers. As a result, the inst.xdriver option is no longer applicable.

Added Kickstart support for CA certificates to enable encrypted DNS configuration during installation

Support for the %certificate in the Kickstart file is added to enable the installation of CA certificates into the installer environment and the installed system. This simplifies the setup process and ensures that the encrypted DNS is operational after installation, reducing manual configuration and security gaps. The certificates are inlined in the Base64 ASCII format and imported through the --dir and --filename options. This enhancement facilitates encrypted DNS configuration as part of Zero Trust Architecture requirements. The encrypted DNS set up during installation ensures secure DNS resolution from the start, improving security and compliance in automated deployments. For more information, see Kickstart certificates section.

pwpolicy and %anaconda Kickstart commands have been removed

The support for the pwpolicy and %anaconda Kickstart commands has been removed in Red Hat Enterprise Linux 10.

The --level parameter of the logging Kickstart command is removed

The --level parameter of the logging kickstart command has been removed. It is no longer possible to set the level of logging of the installation process.

Removed a few options of the timezone Kickstart command

The following options of the timezone Kickstart command has been removed in Red Hat Enterprise Linux 10:

The module kickstart command has been deprecated

Anaconda has deprecated its support for DNF modularity, and as a consequence the module kickstart command has been deprecated. This might impact you if you are using modules in the %packages section of your kickstart files or the module kickstart command. This change is implemented for simplifying the installation process and ensuring a more consistent experience moving forward.

auth or authconfig commands are removed

The auth or authconfig Kickstart commands are removed now. As a replacement, use the authselect kickstart command.

The --excludeWeakdeps and --instLangs options from %packages have been removed

The --excludeWeakdeps and --instLangs options used in the %packages section have been removed. To maintain similar functionality, use the updated --exclude-weakdeps and --inst-langs options instead. These replacements ensure compatibility and provide the same dependency and language control within package management.

Removed teaming options from the network kickstart command

The --teamslaves and --teamconfig options used for configuring team devices in the network kickstart command have been removed. To configure similar network settings, use the --bondslaves and --bondopts options to set up a Bond device.

A new plugin available for RHEL image builder

RHEL image builder cockpit-composer package has been deprecated and replaced with the new cockpit-image-builder package.

RHEL image builder supports creating disk images with advanced partitioning

You can customize partitioning in your blueprints, including custom mount options, LVM-based partitions and LVM-based SWAP, and create disk images with advanced partitioning layout.

You can inject your Kickstart files when creating ISO images

You can use the [customization.installer] blueprint customization field to inject your own Kickstart file when building ISO image. The customization enables you to choose an attended, partial, or fully unattended installation.

The openstack image type is dropped from on premise in RHEL 10

RHEL image builder no longer supports the Openstack image type. You can use the qcow2 image type to build Openstack images.

RHEL 10 Public disk images now have predictable network interface names

The net.ifnames=0 kernel parameter was removed from kernel arguments, causing all systems to use predictable network interface names.

RHEL 10 disk images no longer have the /boot partition from prebuilt disk images

Disk images, such as AWS or KVM, do not have a separate /boot partition, which provides the following enhancements:

The squashfs package has been deprecated

The squashfs package has been deprecated and will be removed in a future major RHEL release. As an alternative, the dracut package now has support for mounting erofs.

Updates on RHEL image builder support to build the RHEL for Edge image types

RHEL Image Builder will continue to support building Edge images for RHEL 9, but not for RHEL 10. You can use RHEL image mode to build RHEL for Edge images. See Using image mode for RHEL to build, deploy, and manage operating systems.

gdisk has been deprecated from boot.iso

The gdisk program has been deprecated from the boot.iso image type. You can still use gdisk in your Kickstarts. However, for the boot.iso image type, other tools are available for handling GPT disks, for example, the parted utility.