How to update Red Hat Enterprise Linux 8 with SMT 12

• Install SUSE Linux Enterprise Server (SLES) 12 Service Pack 1 or higher with the Subscription management tool pattern. (or install smt on existing SLES12 system using YaST> Software > Software Management, select View > Patterns and select the SMT pattern there.)
• It is recommended to check for update immediately after installing SLES using “zypper patch” command.
• Set up SMT using YaST> Network Services > SMT Configuration Wizard.Check “Open port in firewall” checklist if you have firewall enabled.
  • Fill in Organization mirroring credentials that have access to SUSE-provided Red Hat Enterpise Linux update catalog (Login to https://scc.suse.com => Organization => Organization Credentials)
  • Fill in your SCC email.
  • For security reasons, SMT requires a separate user to connect to the database. In the Database Password for smt User screen, set the database password for this user
  • Enter all e-mail addresses for receiving SMT reports using the Add button. Use the Edit and Delete buttons to modify and delete the existing addresses. When you have done that, click Next.
  • If the current database root password is empty, you will be prompted to specify it.
  • By default, SMT is set to communicate with the client hosts via a secure protocol. For this, the server needs to have a server SSL certificate. The wizard displays a warning if the certificate does not exist. You can create a certificate using the Run CA Management button. Refer to Section 17.2, YaST Modules for CA Management, (↑Security Guide) for detailed information on managing certificates with YaST. 
• Verify that the mirror credentials have access to download updates for the RedHat products with
  • # smt-repos -m | grep RES
• Enable mirroring of the Red Hat Enterpise Linux update catalog(s) for the desired architecture(s)
  • # smt-repos -e <repo-name><architecture>
• Mirror the updates and log verbose output:
  • # smt-mirror -d -L /var/log/smt/smt-mirror.log

• 4.-6. can be also set via yast2 => SMT Management.
• The updates for Red Hat Enterprise Linux will also be mirrored automatically as part of the default nightly SMT mirroring cron job.When the mirror process of the catalogs for your Red Hat Enterprise Linux products has completed, the updates are available via http://<smt-server.your-domain.top/repo/SUSE/Updates/RES/8/{debug,src,x86_64}/update/RPMS.
• To enable gpg checking of the repositories, the key used to sign the repositories needs to be made available to the Red Hat Enterprise Liux clients. This key is now available in the res-signingkeys package, which is included in the SLES12 installation source.
• Install the res-signingkeys package with the command
  • # zypper in -y res-signingkeys
• The installation of the package stores the key file as /srv/www/htdocs/repo/keys/res-signingkeys.key.
• Now the key is available to the clients and can be imported into their RPM database as described later.

# dnf config-manager --add-repo http://<smt-server.domain.top>/repo/SUSE/Updates/RES/8/x86_64/update

# dnf config-manager --add-repo http://<smt-server.domain.top>/repo/SUSE/Updates/RES-AS/8/x86_64/update

[smt]
name=SMT repository
baseurl=http://<smt-server.domain.top>/repo/SUSE/Updates/RES-8/x86_64/

enabled=1

• Install the SUSEConnect package and its dependencies (you can install SUSEConnect from RES media or configure update directory according to previous section, RES repository contains SUSEConnect and zypper and libzypp, RES-AS repository contains ruby, so make sure both repositories are added):

# dnf install SUSEConnect sles_es-release librepo-1.9.2

• Disable all repositories (either with dnf config-manager --set-disabled <repo_name> , where repo_name is first column in dnf repolist output.)
• Copy the SMT certificate to the system

# wget http://<smt-server.domain.top>/smt.crt

# cat smt.crt >> /etc/pki/tls/cert.pem

• Invoke SUSEConnect

# SUSEConnect –write-config –url http://<smt-server.domain.top>