SlideShare a Scribd company logo

Ansible automation sa technical deck q2 fy19

D
dvillaco

Ansible is an open source automation tool that can configure, manage and orchestrate applications and infrastructure across any environment. It uses YAML-based playbooks to automate tasks like application deployment, server configuration, provisioning and orchestration. Ansible Tower provides an interface and APIs for controlling, securing and managing Ansible automation at scale within an enterprise. It offers features like role-based access control, scheduled jobs, notifications and integration with other tools.

Internet
1 of 43
Download to read offline
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
AUTOMATION FOR EVERYONE Ansible technical introduction and overview NAME Title
2 AUTOMATE REPEAT IT
3 WHAT IS ANSIBLE AUTOMATION? Ansible Tower is an enterprise framework for controlling, securing and managing your Ansible automation with a UI and RESTful API. Ansible is an open source community project sponsored by Red Hat. It’s a simple automation language that can perfectly describe IT application environments in Ansible Playbooks.
4 1900+ Ansible modules 31,000+ Stars on GitHub 500,000+ Downloads a month
5 CROSS PLATFORM Agentless support for all major OS variants, physical, virtual, cloud and network devices. HUMAN READABLE Perfectly describe and document every aspect of your application environment. PERFECT DESCRIPTION OF APPLICATION Every change can be made by Playbooks, ensuring everyone is on the same page. VERSION CONTROLLED Playbooks are plain-text. Treat them like code in your existing version control. DYNAMIC INVENTORIES Capture all the servers 100% of the time, regardless of infrastructure, location, etc. ORCHESTRATION PLAYS WELL WITH OTHERS Every change can be made by Playbooks, ensuring everyone is on the same page. THE ANSIBLE WAY
6 SIMPLE POWERFUL AGENTLESS App deployment Configuration management Workflow orchestration Network automation Orchestrate the app lifecycle Human readable automation No special coding skills needed Tasks executed in order Usable by every team Get productive quickly Agentless architecture Uses OpenSSH & WinRM No agents to exploit or update Get started immediately More efficient & more secure WHY ANSIBLE?
7 WHAT CAN I DO WITH ANSIBLE? Automate the deployment and management of your entire IT footprint. Orchestration Do this... Firewalls Configuration Management Application Deployment Provisioning Continuous Delivery Security and Compliance On these... Load Balancers Applications Containers Clouds Servers Infrastructure Storage And more... Network Devices
8 WHY IS AUTOMATION IMPORTANT? Your applications and systems are more than just collections of configurations. They’re a finely tuned and ordered list of tasks and processes that result in your working application. Ansible can do it all: • Provisioning • App Deployment • Configuration Management • Multi-tier Orchestration
9 ANSIBLE’S AUTOMATION ENGINE CMDB USERS INVENTORY HOSTS NETWORK DEVICES PLUGINS API MODULES PUBLIC / PRIVATE CLOUD PUBLIC / PRIVATE CLOUD ANSIBLE PLAYBOOK ANSIBLE’S AUTOMATION ENGINE CMDB INVENTORY HOSTS NETWORK DEVICES PLUGINS API MODULES PUBLIC / PRIVATE CLOUD PUBLIC / PRIVATE CLOUD USERS ANSIBLE PLAYBOOK PLAYBOOKS • Written in YAML • Tasks are executed sequentially • Invokes Ansible modules MODULES • Tools in the toolkit • Python, Powershell or any language • Extend Ansible simplicity to entire stack ANSIBLE’S AUTOMATION ENGINE CMDB INVENTORY HOSTS NETWORK DEVICES PLUGINS API PUBLIC / PRIVATE CLOUD PUBLIC / PRIVATE CLOUD USERS ANSIBLE PLAYBOOK MODULES HOW ANSIBLE WORKS CMDB PUBLIC / PRIVATE CLOUD PLUGINS • Gears in the engine • Python that plugs into the core engine • Adaptability for various uses & platforms USERS ANSIBLE PLAYBOOK ANSIBLE’S AUTOMATION ENGINE HOSTS NETWORK DEVICES API MODULES PUBLIC / PRIVATE CLOUD INVENTORY PLUGINS USERS ANSIBLE PLAYBOOK [web] webserver1.example.com webserver2.example.com [db] dbserver1.example.com ANSIBLE’S AUTOMATION ENGINE CMDB HOSTS NETWORK DEVICES PLUGINS API MODULES PUBLIC / PRIVATE CLOUD PUBLIC / PRIVATE CLOUD INVENTORY CLOUD OpenStack, VMware, EC2, Rackspace, GCE, Azure, Spacewalk, Hanlon, Cobbler CUSTOM CMDB USERS ANSIBLE PLAYBOOK ANSIBLE’S AUTOMATION ENGINE HOSTS NETWORK DEVICES PLUGINS API MODULES PUBLIC / PRIVATE CLOUD INVENTORY CMDB PUBLIC / PRIVATE CLOUD
10 ANSIBLE THE LANGUAGE OF DEVOPS
DEV QA/SECURITY IT OPERATIONS BUSINESS ANSIBLE IS THE UNIVERSAL LANGUAGE Ansible is the first automation language that can be read and written across IT. Ansible is the only automation engine that can automate the entire application lifecycle and continuous delivery pipeline.
12 PLAYBOOK EXAMPLE --- - name: install and start apache hosts: web become: yes vars: http_port: 80 tasks: - name: httpd package is present yum: name: httpd state: latest - name: latest index.html file is present copy: src: files/index.html dest: /var/www/html/ - name: httpd is started service: name: httpd state: started --- - name: install and start apache hosts: web become: yes vars: http_port: 80 tasks: - name: httpd package is present yum: name: httpd state: latest - name: latest index.html file is present copy: src: files/index.html dest: /var/www/html/ - name: httpd is started service: name: httpd state: started --- - name: install and start apache hosts: web become: yes vars: http_port: 80 tasks: - name: httpd package is present yum: name: httpd state: latest - name: latest index.html file is present copy: src: files/index.html dest: /var/www/html/ - name: httpd is started service: name: httpd state: started --- - name: install and start apache hosts: web become: yes vars: http_port: 80 tasks: - name: httpd package is present yum: name: httpd state: latest - name: latest index.html file is present copy: src: files/index.html dest: /var/www/html/ - name: httpd is started service: name: httpd state: started --- - name: install and start apache hosts: web become: yes vars: http_port: 80 tasks: - name: httpd package is present yum: name: httpd state: latest - name: latest index.html file is present copy: src: files/index.html dest: /var/www/html/ - name: httpd is started service: name: httpd state: started --- - name: install and start apache hosts: web become: yes vars: http_port: 80 tasks: - name: httpd package is present yum: name: httpd state: latest - name: latest index.html file is present copy: src: files/index.html dest: /var/www/html/ - name: httpd is started service: name: httpd state: started
CLOUD VIRT & CONTAINER WINDOWS NETWORK DEVOPS MONITORING ANSIBLE AUTOMATES TECHNOLOGIES YOU USE Time to automate is measured in minutes AWS Azure Digital Ocean Google OpenStack Rackspace +more Docker VMware RHV OpenStack OpenShift +more ACLs Files Packages IIS Regedits Shares Services Configs Users Domains +more Arista A10 Cumulus Bigswitch Cisco Cumulus Dell F5 Juniper Palo Alto OpenSwitch +more Jira GitHub Vagrant Jenkins Bamboo Atlassian Subversion Slack Hipchat +more Dynatrace Airbrake BigPanda Datadog LogicMonitor Nagios New Relic PagerDuty Sensu StackDriver Zabbix +more STORAGE NetApp Red Hat Storage Infinidat +more OPERATING SYSTEMS RHEL and Linux UNIX Windows +more
14 docs.ansible.com
15 PLAYBOOK EXAMPLES LAMP + HAPROXY + NAGIOS github.com/ansible/ansible-examples/tree/master/lamp_haproxy WINDOWS github.com/ansible/ansible-examples/tree/master/windows SECURITY COMPLIANCE github.com/ansible/ansible-lockdown NETWORK github.com/privateip/network-demo MORE... galaxy.ansible.com github.com/ansible/ansible-examples
16 AUTOMATION FOR TEAMS Ansible Tower technical introduction and overview
17 WHAT IS ANSIBLE TOWER? • Role-based access control • Deploy entire applications with push-button deployment access • All automations are centrally logged Ansible Tower is an enterprise framework for controlling, securing and managing your Ansible automation – with a UI and RESTful API.
18 RED HAT ANSIBLE TOWER RED HAT ANSIBLE ENGINE Scale + operationalize your automation Support for your Ansible automation CONTROL KNOWLEDGE DELEGATION SIMPLE POWERFUL AGENTLESS FUELED BY AN INNOVATIVE OPEN SOURCE COMMUNITY
19 USE CASES USERS ANSIBLE PYTHON CODEBASE OPEN SOURCE MODULE LIBRARY PLUGINS CLOUD AWS, GOOGLE CLOUD, AZURE … INFRASTRUCTURE LINUX, WINDOWS, UNIX … NETWORKS ARISTA, CISCO, JUNIPER … CONTAINERS DOCKER, LXC … SERVICES DATABASES, LOGGING, SOURCE CONTROL MANAGEMENT… TRANSPORT SSH, WINRM, ETC. AUTOMATE YOUR ENTERPRISE ADMINS ANSIBLE CLI & CI SYSTEMS ANSIBLE PLAYBOOKS …. ANSIBLE TOWER SIMPLE USER INTERFACE TOWER API ROLE-BASED ACCESS CONTROL KNOWLEDGE & VISIBILITY SCHEDULED & CENTRALIZED JOBS CONFIGURATION MANAGEMENT APP DEPLOYMENT CONTINUOUS DELIVERY SECURITY & COMPLIANCE ORCHESTRATION PROVISIONING
20 Client accessing Ansible Tower Postgre5QL MANAGED HOSTS DOMAIN CONTROLLER CMDB ANSIBLE TOWER INTEGRATIONS
21 ANSIBLE TOWER INTEGRATIONS EASY AUTHENTICATION SETUP AND INTEGRATION ● Map Tower organizations and teams from SAML attributes ● Easier SAML configuration of two-factor authentication ● Configure multiple LDAP servers in a single Tower ● Tower 3.3 is now an OAuth2 provider ● Users and administrators can create application tokens
22 FEATURE OVERVIEW
23 JOB STATUS UPDATE Heads-up NOC-style automation dashboard displays everything going on in your Ansible environment. ANSIBLE TOWER
24 ANSIBLE TOWER ROLE-BASED ACCESS CONTROL Creates the necessary separation and isolation of users and resources. Users can safely use Ansible Tower to work only on the systems in the environments to which they have access. NEW IN ANSIBLE TOWER 3.3 Mapping Ansible Tower organizations and teams from SAML attributes Easier SAML configuration of two-factor authentication Configure multiple LDAP servers in a single Ansible Tower instance Ansible Tower 3.3 is now an OAuth2 provider Users and administrators can create application tokens
25 ACTIVITY STREAM Securely stores every Job that runs, and enables you to view them later, or export details through Tower’s API. ANSIBLE TOWER
26 MULTI-PLAYBOOK WORKFLOWS Tower’s multi-Playbook workflows chains any number of Playbooks together to create a single workflow. Different Jobs can be run depending on success or failure of the prior Playbook. ANSIBLE TOWER
27 SCALE-OUT CLUSTERING Connect multiple Tower nodes into a Tower cluster to add redundancy and capacity to your automation platform. Add reserved capacity, capacity by organization, deploy remote execution nodes for additional local capacity. NEW! Push-button Ansible Tower deployment and dynamic scaling at runtime for Red Hat OpenShift Container Platform users ANSIBLE TOWER
28 MANAGE AND TRACK YOUR INVENTORY Tower’s inventory syncing and provisioning callbacks allow nodes to request configuration on demand, enabling autoscaling. NEW! Smart Inventories allow you to organize and automate hosts across all your providers based on a powerful host fact query engine. NEW! See alerts from Red Hat Insights directly from Tower, and use Insights-provided Playbook Remediation to fix issues in your infrastructure. ANSIBLE TOWER
29 SCHEDULE JOBS Enables you to schedule any Job now, later, or forever. ANSIBLE TOWER
30 INTEGRATED NOTIFICATIONS Stay informed of your automation status via integrated notifications. Connect Slack, Hipchat, SMS, email and more. ANSIBLE TOWER
31 SELF-SERVICE IT Tower lets you launch Playbooks with just a single click. It can prompt you for variables, let you choose from available secure credentials and monitor the resulting deployments. ANSIBLE TOWER
32 REMOTE COMMAND EXECUTION Run simple tasks on any host with Tower's remote command execution. Add users or groups, reset passwords, restart a malfunctioning service or patch a critical security issue, quickly. ANSIBLE TOWER
33 EXTERNAL LOGGING Connect Tower to your external logging and analytics provider to perform analysis of automation and event correlation across your entire environment. ANSIBLE TOWER
34 ANSIBLE TOWER NEW CUSTOM ANSIBLE ENVIRONMENT SUPPORT ● Configurable Ansible version and options per Job ● Custom environments for jobs at organization, project, or job level ● Per-job inclusion of custom modules, libraries ● Delivers granular environment controls to Tower ● Application teams can stay on their trusted version ● Teams can upgrade on their schedules
35 UPCOMING IN TOWER 3.3 ISOLATED NODES Deploy automation workloads into a DMZ, or other remote locations ADVANCED INSIGHTS INTEGRATION Directly view Red Hat Insights findings, and automatically remediate them RESERVED EXECUTION CAPACITY Limit job capacity available to certain user groups SMART INVENTORY GROUPS Customize and dynamically create groups of servers based on fact data
36 AUTOMATION = ACCELERATION
37 15,000 ROLES AT YOUR DISPOSAL Reusable Roles and Container Apps that allow you to do more, faster Built into the Ansible CLI and Tower galaxy.ansible.com
38 570+ Networking Modules 40 Networking platforms Use Ansible to manage, validate, and continuously track heterogeneous network device configurations and deployments. Network modules are included as part of the Ansible distribution. ANSIBLE NETWORK AUTOMATION ansible.com/networking
39 PLAN AND PROTOTYPE VIRTUALLY Use tasks as reusable building blocks USE YOUR CURRENT DEVELOPMENT PRACTICES Agile, DevOps, Waterfall GO BEYOND THE “PING” TEST Integrate with formal testing platforms BE CONFIDENT DURING DEPLOYMENT Validate changes were successful ENSURE AN ON-GOING STEADY-STATE WHY AUTOMATE YOUR NETWORK?
40 --- - name: configure ios interface hosts: ios01 tasks: - name: collect device running-config ios_command: commands: show running-config interface GigabitEthernet0/2 provider: “{{ cli }}” register: config - name: administratively enable interface ios_config: lines: no shutdown parents: interface GigabitEthernet0/2 provider: “{{ cli }}” when: ‘”shutdown” in config.stdout[0]‘ - name: verify operational status ios_command: commands: - show interfaces GigabitEthernet0/2 - show cdp neighbors GigabitEthernet0/2 detail waitfor: - result[0] contains ‘line protocol is up’ - result[1] contains ‘iosxr03’ - result[1] contains ’10.0.0.42’ provider: “{{ cli }}” PLAYBOOK EXAMPLE: NETWORK AUTOMATION
41 70+ Windows Modules Use Ansible to deploy and manage Windows systems and applications. ANSIBLE WINDOWS AUTOMATION ansible.com/windows 350+ Powershell DSC resources
42 - hosts: new_servers tasks: - name: ensure common OS updates are current win_updates: register: update_result - name: ensure domain membership win_domain_membership: dns_domain_name: contoso.corp domain_admin_user: '{{ domain_admin_username }}' domain_admin_password: '{{ domain_admin_password }}' state: domain register: domain_result - name: reboot and wait for host if updates or domain change require it win_reboot: when: update_result.reboot_required or domain_result.reboot_required - name: ensure local admin account exists win_user: name: localadmin password: '{{ local_admin_password }}' groups: Administrators - name: ensure common tools are installed win_chocolatey: name: '{{ item }}' with_items: ['sysinternals', 'googlechrome'] PLAYBOOK EXAMPLE: WINDOWS
43 Have you used Ansible already? Try Tower for free: ansible.com/tower-trial Would you like to learn Ansible? It’s easy to get started: ansible.com/get-started Want to learn more? Videos, webinars, case studies, whitepapers: ansible.com/resources GETTING STARTED

More Related Content

PDF
AppCatalyst and Photon OS
Juan Manuel Rey
 
PDF
Introduction into Cloud Foundry and Bosh | anynines
anynines GmbH
 
PDF
Automating Container Deployments on Virtualization with Ansible: OpenShift on...
Laurent Domb
 
PDF
Dev opsec dockerimage_patch_n_lifecyclemanagement_2019
kanedafromparis
 
PPTX
DEVNET-1183 OpenShift + Kubernetes + Docker
Cisco DevNet
 
PDF
Introducing Cloud Native, Event Driven, Serverless, Micrsoservices Framework ...
Animesh Singh
 
PDF
Planning Your Cloud Strategy
Imesh Gunaratne
 
PPTX
DevOps Best Practices with Openshift - DevOpsFusion 2020
Andreas Landerer
 
AppCatalyst and Photon OS
Juan Manuel Rey
 
Introduction into Cloud Foundry and Bosh | anynines
anynines GmbH
 
Automating Container Deployments on Virtualization with Ansible: OpenShift on...
Laurent Domb
 
Dev opsec dockerimage_patch_n_lifecyclemanagement_2019
kanedafromparis
 
DEVNET-1183 OpenShift + Kubernetes + Docker
Cisco DevNet
 
Introducing Cloud Native, Event Driven, Serverless, Micrsoservices Framework ...
Animesh Singh
 
Planning Your Cloud Strategy
Imesh Gunaratne
 
DevOps Best Practices with Openshift - DevOpsFusion 2020
Andreas Landerer
 

What's hot (20)

PPTX
Docker Practice in Alibaba Cloud by Li Yi (Mark) & Zuhe Li (Sogo)
Docker, Inc.
 
PPTX
Intro to kubernetes
Elad Hirsch
 
PDF
Run your Java code on Cloud Foundry
Andy Piper
 
PPTX
A First Look at vSphere Integrated Containers and Photon Platform
Dan Wendlandt
 
PDF
Efficient Parallel Testing with Docker by Laura Frank
Docker, Inc.
 
PDF
OSDC 2018 | Spicing up VMWare with Ansible and InSpec by Martin Schurz and S...
NETWAYS
 
PPTX
Cloud Foundry Vancouver Meetup July 2016
Stuart Charlton
 
PPTX
Hyper-V OpenStack Nova Compute
Alessandro Pilotti
 
PDF
Continuous Delivery & Integration with JBoss Fuse on Openshift
Charles Moulliard
 
PPTX
Open Source, infrastructure as Code, Cloud Native Apps 2015
Jonas Rosland
 
PDF
DCSF19 Docker Containers & Java: What I Wish I Had Been Told
Docker, Inc.
 
PDF
Containerize, PaaS, or Go Serverless!?
Phil Estes
 
PPTX
Running stateful services in containers - ContainerDays Boston 2016
Jonas Rosland
 
PPTX
Ultimate Guide to Microservice Architecture on Kubernetes
kloia
 
PPTX
Cloud foundry integration-with-openstack-and-docker-bangalorecf-meetup
Krishna-Kumar
 
PDF
WSO2 Cloud and Platform as a Service Strategy
Imesh Gunaratne
 
PPTX
Why kubernetes matters
Platform9
 
PDF
introduction to micro services
Spyros Lambrinidis
 
PDF
Containerising bootiful microservices javaeeconf
Ivan Vasyliev
 
PDF
Drive new initiatives with a powerful Dell EMC, Nutanix, and Toshiba solution...
Principled Technologies
 
Docker Practice in Alibaba Cloud by Li Yi (Mark) & Zuhe Li (Sogo)
Docker, Inc.
 
Intro to kubernetes
Elad Hirsch
 
Run your Java code on Cloud Foundry
Andy Piper
 
A First Look at vSphere Integrated Containers and Photon Platform
Dan Wendlandt
 
Efficient Parallel Testing with Docker by Laura Frank
Docker, Inc.
 
OSDC 2018 | Spicing up VMWare with Ansible and InSpec by Martin Schurz and S...
NETWAYS
 
Cloud Foundry Vancouver Meetup July 2016
Stuart Charlton
 
Hyper-V OpenStack Nova Compute
Alessandro Pilotti
 
Continuous Delivery & Integration with JBoss Fuse on Openshift
Charles Moulliard
 
Open Source, infrastructure as Code, Cloud Native Apps 2015
Jonas Rosland
 
DCSF19 Docker Containers & Java: What I Wish I Had Been Told
Docker, Inc.
 
Containerize, PaaS, or Go Serverless!?
Phil Estes
 
Running stateful services in containers - ContainerDays Boston 2016
Jonas Rosland
 
Ultimate Guide to Microservice Architecture on Kubernetes
kloia
 
Cloud foundry integration-with-openstack-and-docker-bangalorecf-meetup
Krishna-Kumar
 
WSO2 Cloud and Platform as a Service Strategy
Imesh Gunaratne
 
Why kubernetes matters
Platform9
 
introduction to micro services
Spyros Lambrinidis
 
Containerising bootiful microservices javaeeconf
Ivan Vasyliev
 
Drive new initiatives with a powerful Dell EMC, Nutanix, and Toshiba solution...
Principled Technologies
 
Ad

Similar to Ansible automation sa technical deck q2 fy19 (20)

PPTX
Ansible Automation Best Practices From Startups to Enterprises - Minnebar 12
Keith Resar
 
PDF
Automation day red hat ansible
Rodrigo Missiaggia
 
PDF
Automação do físico ao NetSecDevOps
Raul Leite
 
PDF
Red hat ansible automation technical deck
Juraj Hantak
 
PDF
06 network automationwithansible
Khairul Zebua
 
PPTX
Intro to-ansible-sep7-meetup
Ramesh Godishela
 
PDF
Ansible - Hands on Training
Mehmet Ali Aydın
 
PDF
Ansible Tutorial.pdf
NigussMehari4
 
PDF
Getting Started with Ansible - Jake.pdf
ssuserd254491
 
PDF
ansible_rhel.pdf
ssuser6d347b
 
PDF
Run Code, Not Servers: AWS Lambda
Özgür Çiçek
 
PDF
Better Operations into the Cloud
Fabio Ferrari
 
PDF
Ansible Automation to Rule Them All
Tim Fairweather
 
PDF
Ansible & Salt - Vincent Boon
MyNOG
 
PPTX
Habitat talk at CodeMonsters Sofia, Bulgaria Nov 27 2018
Mandi Walls
 
PPTX
Accelerating with Ansible
Global Knowledge Training
 
PDF
Ansible, MongoDB Ops Manager and AWS v1.1
Michael Lynn
 
PDF
Ansible automation tool with modules
mohamedmoharam
 
PPTX
Openshift Presentation ppt compare with VM
shubhamage1
 
PDF
Technical introduction to Red Hat Ansible
pbtest
 
Ansible Automation Best Practices From Startups to Enterprises - Minnebar 12
Keith Resar
 
Automation day red hat ansible
Rodrigo Missiaggia
 
Automação do físico ao NetSecDevOps
Raul Leite
 
Red hat ansible automation technical deck
Juraj Hantak
 
06 network automationwithansible
Khairul Zebua
 
Intro to-ansible-sep7-meetup
Ramesh Godishela
 
Ansible - Hands on Training
Mehmet Ali Aydın
 
Ansible Tutorial.pdf
NigussMehari4
 
Getting Started with Ansible - Jake.pdf
ssuserd254491
 
ansible_rhel.pdf
ssuser6d347b
 
Run Code, Not Servers: AWS Lambda
Özgür Çiçek
 
Better Operations into the Cloud
Fabio Ferrari
 
Ansible Automation to Rule Them All
Tim Fairweather
 
Ansible & Salt - Vincent Boon
MyNOG
 
Habitat talk at CodeMonsters Sofia, Bulgaria Nov 27 2018
Mandi Walls
 
Accelerating with Ansible
Global Knowledge Training
 
Ansible, MongoDB Ops Manager and AWS v1.1
Michael Lynn
 
Ansible automation tool with modules
mohamedmoharam
 
Openshift Presentation ppt compare with VM
shubhamage1
 
Technical introduction to Red Hat Ansible
pbtest
 
Ad

Recently uploaded (20)

PPTX
522797556-Unit-2-Temperature-measurement-1-1.pptx
msar8888
 
PPTX
CHE NAA, , b,mn,mblblblbljb jb jlb ,j , ,C PPT.pptx
sumodmjohn3
 
PDF
Tenda Login Guide: Access Your Router in 5 Easy Steps
tendawifi16
 
PDF
The Internet -By the Numbers, Sri Lanka Edition
APNIC
 
PPTX
QR Codes Qr codecodecodecodecocodedecodecode
SRMediaZone
 
PPTX
innovation process that make everything different.pptx
SoumyadipPaul18
 
PPTX
Introduction to Information and Communication Technology
AkmadArzieAyao1
 
PDF
Triggering QUIC, presented by Geoff Huston at IETF 123
APNIC
 
PPTX
Internet___Basics___Styled_ presentation
poonam62133
 
PPTX
SAP Ariba Sourcing PPT for learning material
NKKumar16
 
PDF
An introduction to the IFRS (ISSB) Stndards.pdf
farhankhan13694
 
PPTX
Introuction about ICD -10 and ICD-11 PPT.pptx
naveenithkrishnan
 
PPTX
Module 1 - Cyber Law and Ethics 101.pptx
anantyakhrisna1
 
PPTX
presentation_pfe-universite-molay-seltan.pptx
yahyamohibme
 
PPTX
introduction about ICD -10 & ICD-11 ppt.pptx
naveenithkrishnan
 
PDF
Unit-1 introduction to cyber security discuss about how to secure a system
shivangisharma636228
 
PDF
Automated vs Manual WooCommerce to Shopify Migration_ Pros & Cons.pdf
CartCoders
 
PPTX
Digital Literacy And Online Safety on internet
riksa rifqi
 
PDF
SASE Traffic Flow - ZTNA Connector-1.pdf
mackwell7777
 
PPTX
international classification of diseases ICD-10 review PPT.pptx
naveenithkrishnan
 
522797556-Unit-2-Temperature-measurement-1-1.pptx
msar8888
 
CHE NAA, , b,mn,mblblblbljb jb jlb ,j , ,C PPT.pptx
sumodmjohn3
 
Tenda Login Guide: Access Your Router in 5 Easy Steps
tendawifi16
 
The Internet -By the Numbers, Sri Lanka Edition
APNIC
 
QR Codes Qr codecodecodecodecocodedecodecode
SRMediaZone
 
innovation process that make everything different.pptx
SoumyadipPaul18
 
Introduction to Information and Communication Technology
AkmadArzieAyao1
 
Triggering QUIC, presented by Geoff Huston at IETF 123
APNIC
 
Internet___Basics___Styled_ presentation
poonam62133
 
SAP Ariba Sourcing PPT for learning material
NKKumar16
 
An introduction to the IFRS (ISSB) Stndards.pdf
farhankhan13694
 
Introuction about ICD -10 and ICD-11 PPT.pptx
naveenithkrishnan
 
Module 1 - Cyber Law and Ethics 101.pptx
anantyakhrisna1
 
presentation_pfe-universite-molay-seltan.pptx
yahyamohibme
 
introduction about ICD -10 & ICD-11 ppt.pptx
naveenithkrishnan
 
Unit-1 introduction to cyber security discuss about how to secure a system
shivangisharma636228
 
Automated vs Manual WooCommerce to Shopify Migration_ Pros & Cons.pdf
CartCoders
 
Digital Literacy And Online Safety on internet
riksa rifqi
 
SASE Traffic Flow - ZTNA Connector-1.pdf
mackwell7777
 
international classification of diseases ICD-10 review PPT.pptx
naveenithkrishnan
 

Ansible automation sa technical deck q2 fy19

  • 1. AUTOMATION FOR EVERYONE Ansible technical introduction and overview NAME Title
  • 3. 3 WHAT IS ANSIBLE AUTOMATION? Ansible Tower is an enterprise framework for controlling, securing and managing your Ansible automation with a UI and RESTful API. Ansible is an open source community project sponsored by Red Hat. It’s a simple automation language that can perfectly describe IT application environments in Ansible Playbooks.
  • 4. 4 1900+ Ansible modules 31,000+ Stars on GitHub 500,000+ Downloads a month
  • 5. 5 CROSS PLATFORM Agentless support for all major OS variants, physical, virtual, cloud and network devices. HUMAN READABLE Perfectly describe and document every aspect of your application environment. PERFECT DESCRIPTION OF APPLICATION Every change can be made by Playbooks, ensuring everyone is on the same page. VERSION CONTROLLED Playbooks are plain-text. Treat them like code in your existing version control. DYNAMIC INVENTORIES Capture all the servers 100% of the time, regardless of infrastructure, location, etc. ORCHESTRATION PLAYS WELL WITH OTHERS Every change can be made by Playbooks, ensuring everyone is on the same page. THE ANSIBLE WAY
  • 6. 6 SIMPLE POWERFUL AGENTLESS App deployment Configuration management Workflow orchestration Network automation Orchestrate the app lifecycle Human readable automation No special coding skills needed Tasks executed in order Usable by every team Get productive quickly Agentless architecture Uses OpenSSH & WinRM No agents to exploit or update Get started immediately More efficient & more secure WHY ANSIBLE?
  • 7. 7 WHAT CAN I DO WITH ANSIBLE? Automate the deployment and management of your entire IT footprint. Orchestration Do this... Firewalls Configuration Management Application Deployment Provisioning Continuous Delivery Security and Compliance On these... Load Balancers Applications Containers Clouds Servers Infrastructure Storage And more... Network Devices
  • 8. 8 WHY IS AUTOMATION IMPORTANT? Your applications and systems are more than just collections of configurations. They’re a finely tuned and ordered list of tasks and processes that result in your working application. Ansible can do it all: • Provisioning • App Deployment • Configuration Management • Multi-tier Orchestration
  • 9. 9 ANSIBLE’S AUTOMATION ENGINE CMDB USERS INVENTORY HOSTS NETWORK DEVICES PLUGINS API MODULES PUBLIC / PRIVATE CLOUD PUBLIC / PRIVATE CLOUD ANSIBLE PLAYBOOK ANSIBLE’S AUTOMATION ENGINE CMDB INVENTORY HOSTS NETWORK DEVICES PLUGINS API MODULES PUBLIC / PRIVATE CLOUD PUBLIC / PRIVATE CLOUD USERS ANSIBLE PLAYBOOK PLAYBOOKS • Written in YAML • Tasks are executed sequentially • Invokes Ansible modules MODULES • Tools in the toolkit • Python, Powershell or any language • Extend Ansible simplicity to entire stack ANSIBLE’S AUTOMATION ENGINE CMDB INVENTORY HOSTS NETWORK DEVICES PLUGINS API PUBLIC / PRIVATE CLOUD PUBLIC / PRIVATE CLOUD USERS ANSIBLE PLAYBOOK MODULES HOW ANSIBLE WORKS CMDB PUBLIC / PRIVATE CLOUD PLUGINS • Gears in the engine • Python that plugs into the core engine • Adaptability for various uses & platforms USERS ANSIBLE PLAYBOOK ANSIBLE’S AUTOMATION ENGINE HOSTS NETWORK DEVICES API MODULES PUBLIC / PRIVATE CLOUD INVENTORY PLUGINS USERS ANSIBLE PLAYBOOK [web] webserver1.example.com webserver2.example.com [db] dbserver1.example.com ANSIBLE’S AUTOMATION ENGINE CMDB HOSTS NETWORK DEVICES PLUGINS API MODULES PUBLIC / PRIVATE CLOUD PUBLIC / PRIVATE CLOUD INVENTORY CLOUD OpenStack, VMware, EC2, Rackspace, GCE, Azure, Spacewalk, Hanlon, Cobbler CUSTOM CMDB USERS ANSIBLE PLAYBOOK ANSIBLE’S AUTOMATION ENGINE HOSTS NETWORK DEVICES PLUGINS API MODULES PUBLIC / PRIVATE CLOUD INVENTORY CMDB PUBLIC / PRIVATE CLOUD
  • 11. DEV QA/SECURITY IT OPERATIONS BUSINESS ANSIBLE IS THE UNIVERSAL LANGUAGE Ansible is the first automation language that can be read and written across IT. Ansible is the only automation engine that can automate the entire application lifecycle and continuous delivery pipeline.
  • 12. 12 PLAYBOOK EXAMPLE --- - name: install and start apache hosts: web become: yes vars: http_port: 80 tasks: - name: httpd package is present yum: name: httpd state: latest - name: latest index.html file is present copy: src: files/index.html dest: /var/www/html/ - name: httpd is started service: name: httpd state: started --- - name: install and start apache hosts: web become: yes vars: http_port: 80 tasks: - name: httpd package is present yum: name: httpd state: latest - name: latest index.html file is present copy: src: files/index.html dest: /var/www/html/ - name: httpd is started service: name: httpd state: started --- - name: install and start apache hosts: web become: yes vars: http_port: 80 tasks: - name: httpd package is present yum: name: httpd state: latest - name: latest index.html file is present copy: src: files/index.html dest: /var/www/html/ - name: httpd is started service: name: httpd state: started --- - name: install and start apache hosts: web become: yes vars: http_port: 80 tasks: - name: httpd package is present yum: name: httpd state: latest - name: latest index.html file is present copy: src: files/index.html dest: /var/www/html/ - name: httpd is started service: name: httpd state: started --- - name: install and start apache hosts: web become: yes vars: http_port: 80 tasks: - name: httpd package is present yum: name: httpd state: latest - name: latest index.html file is present copy: src: files/index.html dest: /var/www/html/ - name: httpd is started service: name: httpd state: started --- - name: install and start apache hosts: web become: yes vars: http_port: 80 tasks: - name: httpd package is present yum: name: httpd state: latest - name: latest index.html file is present copy: src: files/index.html dest: /var/www/html/ - name: httpd is started service: name: httpd state: started
  • 13. CLOUD VIRT & CONTAINER WINDOWS NETWORK DEVOPS MONITORING ANSIBLE AUTOMATES TECHNOLOGIES YOU USE Time to automate is measured in minutes AWS Azure Digital Ocean Google OpenStack Rackspace +more Docker VMware RHV OpenStack OpenShift +more ACLs Files Packages IIS Regedits Shares Services Configs Users Domains +more Arista A10 Cumulus Bigswitch Cisco Cumulus Dell F5 Juniper Palo Alto OpenSwitch +more Jira GitHub Vagrant Jenkins Bamboo Atlassian Subversion Slack Hipchat +more Dynatrace Airbrake BigPanda Datadog LogicMonitor Nagios New Relic PagerDuty Sensu StackDriver Zabbix +more STORAGE NetApp Red Hat Storage Infinidat +more OPERATING SYSTEMS RHEL and Linux UNIX Windows +more
  • 15. 15 PLAYBOOK EXAMPLES LAMP + HAPROXY + NAGIOS github.com/ansible/ansible-examples/tree/master/lamp_haproxy WINDOWS github.com/ansible/ansible-examples/tree/master/windows SECURITY COMPLIANCE github.com/ansible/ansible-lockdown NETWORK github.com/privateip/network-demo MORE... galaxy.ansible.com github.com/ansible/ansible-examples
  • 16. 16 AUTOMATION FOR TEAMS Ansible Tower technical introduction and overview
  • 17. 17 WHAT IS ANSIBLE TOWER? • Role-based access control • Deploy entire applications with push-button deployment access • All automations are centrally logged Ansible Tower is an enterprise framework for controlling, securing and managing your Ansible automation – with a UI and RESTful API.
  • 18. 18 RED HAT ANSIBLE TOWER RED HAT ANSIBLE ENGINE Scale + operationalize your automation Support for your Ansible automation CONTROL KNOWLEDGE DELEGATION SIMPLE POWERFUL AGENTLESS FUELED BY AN INNOVATIVE OPEN SOURCE COMMUNITY
  • 19. 19 USE CASES USERS ANSIBLE PYTHON CODEBASE OPEN SOURCE MODULE LIBRARY PLUGINS CLOUD AWS, GOOGLE CLOUD, AZURE … INFRASTRUCTURE LINUX, WINDOWS, UNIX … NETWORKS ARISTA, CISCO, JUNIPER … CONTAINERS DOCKER, LXC … SERVICES DATABASES, LOGGING, SOURCE CONTROL MANAGEMENT… TRANSPORT SSH, WINRM, ETC. AUTOMATE YOUR ENTERPRISE ADMINS ANSIBLE CLI & CI SYSTEMS ANSIBLE PLAYBOOKS …. ANSIBLE TOWER SIMPLE USER INTERFACE TOWER API ROLE-BASED ACCESS CONTROL KNOWLEDGE & VISIBILITY SCHEDULED & CENTRALIZED JOBS CONFIGURATION MANAGEMENT APP DEPLOYMENT CONTINUOUS DELIVERY SECURITY & COMPLIANCE ORCHESTRATION PROVISIONING
  • 20. 20 Client accessing Ansible Tower Postgre5QL MANAGED HOSTS DOMAIN CONTROLLER CMDB ANSIBLE TOWER INTEGRATIONS
  • 21. 21 ANSIBLE TOWER INTEGRATIONS EASY AUTHENTICATION SETUP AND INTEGRATION ● Map Tower organizations and teams from SAML attributes ● Easier SAML configuration of two-factor authentication ● Configure multiple LDAP servers in a single Tower ● Tower 3.3 is now an OAuth2 provider ● Users and administrators can create application tokens
  • 23. 23 JOB STATUS UPDATE Heads-up NOC-style automation dashboard displays everything going on in your Ansible environment. ANSIBLE TOWER
  • 24. 24 ANSIBLE TOWER ROLE-BASED ACCESS CONTROL Creates the necessary separation and isolation of users and resources. Users can safely use Ansible Tower to work only on the systems in the environments to which they have access. NEW IN ANSIBLE TOWER 3.3 Mapping Ansible Tower organizations and teams from SAML attributes Easier SAML configuration of two-factor authentication Configure multiple LDAP servers in a single Ansible Tower instance Ansible Tower 3.3 is now an OAuth2 provider Users and administrators can create application tokens
  • 25. 25 ACTIVITY STREAM Securely stores every Job that runs, and enables you to view them later, or export details through Tower’s API. ANSIBLE TOWER
  • 26. 26 MULTI-PLAYBOOK WORKFLOWS Tower’s multi-Playbook workflows chains any number of Playbooks together to create a single workflow. Different Jobs can be run depending on success or failure of the prior Playbook. ANSIBLE TOWER
  • 27. 27 SCALE-OUT CLUSTERING Connect multiple Tower nodes into a Tower cluster to add redundancy and capacity to your automation platform. Add reserved capacity, capacity by organization, deploy remote execution nodes for additional local capacity. NEW! Push-button Ansible Tower deployment and dynamic scaling at runtime for Red Hat OpenShift Container Platform users ANSIBLE TOWER
  • 28. 28 MANAGE AND TRACK YOUR INVENTORY Tower’s inventory syncing and provisioning callbacks allow nodes to request configuration on demand, enabling autoscaling. NEW! Smart Inventories allow you to organize and automate hosts across all your providers based on a powerful host fact query engine. NEW! See alerts from Red Hat Insights directly from Tower, and use Insights-provided Playbook Remediation to fix issues in your infrastructure. ANSIBLE TOWER
  • 29. 29 SCHEDULE JOBS Enables you to schedule any Job now, later, or forever. ANSIBLE TOWER
  • 30. 30 INTEGRATED NOTIFICATIONS Stay informed of your automation status via integrated notifications. Connect Slack, Hipchat, SMS, email and more. ANSIBLE TOWER
  • 31. 31 SELF-SERVICE IT Tower lets you launch Playbooks with just a single click. It can prompt you for variables, let you choose from available secure credentials and monitor the resulting deployments. ANSIBLE TOWER
  • 32. 32 REMOTE COMMAND EXECUTION Run simple tasks on any host with Tower's remote command execution. Add users or groups, reset passwords, restart a malfunctioning service or patch a critical security issue, quickly. ANSIBLE TOWER
  • 33. 33 EXTERNAL LOGGING Connect Tower to your external logging and analytics provider to perform analysis of automation and event correlation across your entire environment. ANSIBLE TOWER
  • 34. 34 ANSIBLE TOWER NEW CUSTOM ANSIBLE ENVIRONMENT SUPPORT ● Configurable Ansible version and options per Job ● Custom environments for jobs at organization, project, or job level ● Per-job inclusion of custom modules, libraries ● Delivers granular environment controls to Tower ● Application teams can stay on their trusted version ● Teams can upgrade on their schedules
  • 35. 35 UPCOMING IN TOWER 3.3 ISOLATED NODES Deploy automation workloads into a DMZ, or other remote locations ADVANCED INSIGHTS INTEGRATION Directly view Red Hat Insights findings, and automatically remediate them RESERVED EXECUTION CAPACITY Limit job capacity available to certain user groups SMART INVENTORY GROUPS Customize and dynamically create groups of servers based on fact data
  • 37. 37 15,000 ROLES AT YOUR DISPOSAL Reusable Roles and Container Apps that allow you to do more, faster Built into the Ansible CLI and Tower galaxy.ansible.com
  • 38. 38 570+ Networking Modules 40 Networking platforms Use Ansible to manage, validate, and continuously track heterogeneous network device configurations and deployments. Network modules are included as part of the Ansible distribution. ANSIBLE NETWORK AUTOMATION ansible.com/networking
  • 39. 39 PLAN AND PROTOTYPE VIRTUALLY Use tasks as reusable building blocks USE YOUR CURRENT DEVELOPMENT PRACTICES Agile, DevOps, Waterfall GO BEYOND THE “PING” TEST Integrate with formal testing platforms BE CONFIDENT DURING DEPLOYMENT Validate changes were successful ENSURE AN ON-GOING STEADY-STATE WHY AUTOMATE YOUR NETWORK?
  • 40. 40 --- - name: configure ios interface hosts: ios01 tasks: - name: collect device running-config ios_command: commands: show running-config interface GigabitEthernet0/2 provider: “{{ cli }}” register: config - name: administratively enable interface ios_config: lines: no shutdown parents: interface GigabitEthernet0/2 provider: “{{ cli }}” when: ‘”shutdown” in config.stdout[0]‘ - name: verify operational status ios_command: commands: - show interfaces GigabitEthernet0/2 - show cdp neighbors GigabitEthernet0/2 detail waitfor: - result[0] contains ‘line protocol is up’ - result[1] contains ‘iosxr03’ - result[1] contains ’10.0.0.42’ provider: “{{ cli }}” PLAYBOOK EXAMPLE: NETWORK AUTOMATION
  • 41. 41 70+ Windows Modules Use Ansible to deploy and manage Windows systems and applications. ANSIBLE WINDOWS AUTOMATION ansible.com/windows 350+ Powershell DSC resources
  • 42. 42 - hosts: new_servers tasks: - name: ensure common OS updates are current win_updates: register: update_result - name: ensure domain membership win_domain_membership: dns_domain_name: contoso.corp domain_admin_user: '{{ domain_admin_username }}' domain_admin_password: '{{ domain_admin_password }}' state: domain register: domain_result - name: reboot and wait for host if updates or domain change require it win_reboot: when: update_result.reboot_required or domain_result.reboot_required - name: ensure local admin account exists win_user: name: localadmin password: '{{ local_admin_password }}' groups: Administrators - name: ensure common tools are installed win_chocolatey: name: '{{ item }}' with_items: ['sysinternals', 'googlechrome'] PLAYBOOK EXAMPLE: WINDOWS
  • 43. 43 Have you used Ansible already? Try Tower for free: ansible.com/tower-trial Would you like to learn Ansible? It’s easy to get started: ansible.com/get-started Want to learn more? Videos, webinars, case studies, whitepapers: ansible.com/resources GETTING STARTED