Automating operational procedures with Daniel Fernández Rodríguez - Akos Hencz -

Slides:

Advertisements

Similar presentations

How We Manage SaaS Infrastructure Knowledge Track

Advertisements

Overview of local security issues in Campus Grid environments Bruce Beckles University of Cambridge Computing Service.

CCTracker Presented by Dinesh Sarode Leaf : Bill Tomlin IT/FIO URL

Usage of the memoQ web service API by LSP – a case study

Instant Queue IBM Techline Instant Queue Manager Deployed for IBM Techline Richard Brader IBM Techline January 2012.

Edoclite and Managing Client Engagements What is Edoclite? How is it used at IU? Development Process?

JIRA – An Introduction -Arpit Jindal

PayDox applications All features can be used independently.

© 2004, The Trustees of Indiana University 1 OneStart Workflow Basics Brian McGough, Manager, Systems Integration, UITS Ryan Kirkendall, Lead Developer.

Selenium – Testing Tool. What is Selenium? Selenium is a robust set of tools that supports rapid development of test automation for web-based applications.

Slide 1 of 9 Presenting 24x7 Scheduler The art of computer automation Press PageDown key or click to advance.

CERN - IT Department CH-1211 Genève 23 Switzerland t Service-Now UDS training [Jan 2011] - 1 Service-now training for UDS Service-now training.

Sitefinity Performance and Architecture

CERN Cloud Infrastructure Report 2 Bruno Bompastor for the CERN Cloud Team HEPiX Spring 2015 Oxford University, UK Bruno Bompastor: CERN Cloud Report.

First Indico Workshop Basic Administration Guide Alejandro Avilés May 2013 CERN.

Purpose Intended Audience and Presenter Contents Proposed Presentation Length Intended audience is all distributor partners and VARs Content may be customized.

The Blue “W” is placed on your Desktop or in your system tray area.

Open Source Workshop1 IBM Software Group Working with Apache Tuscany A Hands-On Workshop Luciano Resende Haleh.

Sage CRM Developers Course

NAMS Account Activation Training. 2 What is NAMS? The NASA Account Management System is NASA’s centralized process for requesting and maintaining accounts.

Advanced User Guide to Outlook and all its features.

Raffaele Di Fazio Connecting to the Clouds Cloud Brokers and OCCI.

Web Trnsport – Beta Testing and Implementation TUG Roundtable Discussion Elizabeth Rodgers Info Tech, Inc. October 9, 2007.

Volunteer Management System Presented by Team SE18-08S SE18-T08S - Jan 2012.

Copyright © 2007, Oracle. All rights reserved. Managing Concurrent Requests.

Windows Azure Conference 2014 Deploy your Java workloads on Windows Azure.

Improving Efficiency with Reusable Processes Linda Koestler Kinetic Data.

1 Overview of the Application Hosting Environment Stefan Zasada University College London.

© 2012 Cisco and/or its affiliates. All rights reserved. Cisco Confidential 1 © 2012 Cisco and/or its affiliates. All rights reserved. 1 Voice Mailbox.

Phone: Mega AS Consulting Ltd © 2007  CAT – the problem & the solution  Using the CAT - Administrator  Mega.

Silberschatz, Galvin and Gagne  Operating System Concepts Chapter 3: Operating-System Structures System Components Operating System Services.

CERN IT Department CH-1211 Geneva 23 Switzerland t Daniel Gomez Ruben Gaspar Ignacio Coterillo * Dawid Wojcik *CERN/CSIC funded by Spanish.

DataNet – Flexible Metadata Overlay over File Resources Daniel Harężlak 1, Marek Kasztelnik 1, Maciej Pawlik 1, Bartosz Wilk 1, Marian Bubak 1,2 1 ACC.

PearsonAccess April 14, PearsonAccess – Agenda Order Tracking Additional Orders Student Data Upload (SDU) files New Student Wizard Online Testing.

What's New in Kinetic Calendar 2.0 Jack Boespflug Kinetic Data.

1 Chapter Overview Defining Operators Creating Jobs Configuring Alerts Creating a Database Maintenance Plan Creating Multiserver Jobs.

CERN IT Department CH-1211 Geneva 23 Switzerland t CF Computing Facilities Agile Infrastructure Monitoring CERN IT/CF.

Gerald Kunzmann, DOCOMO Carlos Goncalves, NEC Ryota Mibu, NEC

CERN IT Department CH-1211 Genève 23 Switzerland PES 1 Ermis service for DNS Load Balancer configuration HEPiX Fall 2014 Aris Angelogiannopoulos,

Computing Facilities CERN IT Department CH-1211 Geneva 23 Switzerland t CF Agile Infrastructure Monitoring HEPiX Spring th April.

Scaling the CERN OpenStack cloud Stefano Zilli On behalf of CERN Cloud Infrastructure Team 2.

Image Distribution and VMIC (brainstorm) Belmiro Moreira CERN IT-PES-PS.

Computing Facilities CERN IT Department CH-1211 Geneva 23 Switzerland t CF Alarming with GNI VOC WG meeting 12 th September.

CERN IT Department CH-1211 Genève 23 Switzerland t Migration from ELFMs to Agile Infrastructure CERN, IT Department.

IBM Express Runtime Quick Start Workshop © 2007 IBM Corporation Deploying a Solution.

Google Code Libraries Dima Ionut Daniel. Contents What is Google Code? LDAPBeans Object-ldap-mapping Ldap-ODM Bug4j jOOR Rapa jongo Conclusion Bibliography.

**DRAFT** Doctor Host Maintenance Maintenance changes to OpenStack Nova 17 May 2016 Tomi Juvonen Nokia.

IBM Control Desk Enabling the Enterprise App Store –

Platform & Engineering Services CERN IT Department CH-1211 Geneva 23 Switzerland t PES Agile Infrastructure Project Overview : Status and.

EGEE-III INFSO-RI Enabling Grids for E-sciencE EGEE and gLite are registered trademarks The Dashboard for Operations Cyril L’Orphelin.

Configuration Services at CERN HEPiX fall Ben Jones, HEPiX Fall 2014.

Bluemix for Domino Developers Niklas Heidloff, heidloff.net.

Doctor Host Maintenance Maintenance changes to OpenStack Nova 13 Jun 2016 Tomi Juvonen Nokia.

SQL Database Management

Resource Provisioning Services Introduction and Plans

Infrastructure Orchestration to Optimize Testing

Maintenance changes to OpenStack Nova 21 Jun 2016 Tomi Juvonen Nokia

CARA 3.10 Major New Features

Section 13 - Integrating with Third Party Tools

Virtualization in the gLite Grid Middleware software process

SNOW ONLINE TRAINING IN HYDERABAD

SERVICENOW ADMIN & ADVANCED ONLINE TRAINING

Implementation Specialists Presents

SharePoint Essentials Toolkit

HC Hyper-V Module GUI Portal VPS Templates Web Console

Simplified Development Toolkit

2/24/2019 6:15 AM © Microsoft Corporation. All rights reserved. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN.

Technical Outreach Expert

Contract Management Software 100% Cloud-Based ContraxAware provides you with a deep set of easy to use contract management features.

Presentation transcript:

Automating operational procedures with Daniel Fernández Rodríguez - Akos Hencz - CERN IT-CM Group 21/04/2016 HEPiX Spring 2016 Workshop1

Outline What is Rundeck? What does Rundeck provide us? Deployment Use cases Missing things Summary 21/04/2016 HEPiX Spring 2016 Workshop2

What is Rundeck?  Automate routine operational procedures  Company -  Language Java  Apache Software License - Code on  Actively developed 21/04/2016 HEPiX Spring 2016 Workshop3

Concepts Projects: used to separate management activity. All Rundeck activities occur within the context of a project Jobs: a sequence of steps, job options, and the nodes where the steps are executed Executions: An execution is a representation of the activity of a running or completed job Plugins: extend and expand Rundeck’s functionality 21/04/2016 HEPiX Spring 2016 Workshop4

What does Rundeck provide us? Common place for implemented workflows and jobs Clean and easy-to-use Web interface Allow for scheduled jobs, cron-style Jobs reusability 21/04/2016 HEPiX Spring 2016 Workshop5

What does Rundeck provide us? Fine-grain access control  Ex: Sysadmins can only execute, Cloud Team modify + execute Traceability and auditing Delegation internal sensitive tasks to other groups without exposing credentials or procedures  Ex: Sysadmins remove node from infrastructure w/o having rights Complete log of every executed job 21/04/2016 HEPiX Spring 2016 Workshop6

All puppetized Currently working on a Puppet module to deploy Rundeck with some CERN specifics Different deployments for different services Credentials Deployment 21/04/2016 HEPiX Spring 2016 Workshop7

Deployment mod_shib Apache :443 Rundeck :4440 Tomcat :8009 rundeck-01.cern.ch 21/04/2016 HEPiX Spring 2016 Workshop8

Use cases  OpenStack Management  Project Creation  Project Quota Updates  Reporting on the Cloud  Usage and status  Health reports  Notifications  Hyper-V Patching Campaigns  VM owners  Checks and verifications  Consistency checks  GNI Tickets  Configuration  Rename physical host  Register new Puppet entities  Various scheduled synchronizations  Host Management  Enable/disable Compute Host  HW Interventions  Remove physical host  Internal  Auto backups  Reload nodes  …. 21/04/2016 HEPiX Spring 2016 Workshop9

HW Intervention on a Compute Node Disable compute node Disable nova-service Switch Alarms OFF Update associated Service-Now ticket Notifications Send to owners of affected VMs Other tasks Post new message broker Add remote AT job Save intervention details Send calendar invitation 21/04/2016 HEPiX Spring 2016 Workshop10

HW Intervention on a Compute Node Kerberos granting ticket for svcrdeck obtained successfully [INFO] Changed OS_AUTH_URL to [INFO] Changed SERVICE_ENDPOINT [INFO] Changed OS_REGION_NAME to cell12 [INFO] Appending cern.ch to the host name... [INFO] Trying to disable nova-compute on P S20073.cern.ch | Host | Binary | Status | Disabled Reason | | P S20073.cern.ch | nova-compute | disabled | [INC ] Disabled by rsantalu using Rundeck (11823) | [INFO] nova-compute sucessfully disabled on P S20073.cern.ch. TOTAL HOSTS SUCCESS ERROR [PERFORM] SUMMARY NOVA DISABLE [INFO] Using roger to disable alarms on the following hosts: P S20073 [INFO] Trying to disable roger alarms on P S [INFO] Roger alarms sucessfully disabled on P S [ { "app_alarmed": false, "appstate": "production", "expires": "", "hostname": "p s20073.cern.ch", "hw_alarmed": false, "message": "[INC ] Disabled by rsantalu using Rundeck (11823)", "nc_alarmed": false, "os_alarmed": false, … 21/04/2016 HEPiX Spring 2016 Workshop11

Register new Puppet entities Create new puppet modules & hostgroups JIRA Configuration Change ticket  Ticket status APPROVED  JIRA Web-Hook executes job via Rundeck REST API 21/04/2016 HEPiX Spring 2016 Workshop12

Register new Puppet entities Parse JIRA ticket with the given ID  Create project in Gitlab, set ACLs, user groups, LDAP links  Create puppet skeleton in project & QA branch  Register project in Foreman and other systems Close ticket 21/04/2016 HEPiX Spring 2016 Workshop13

GNI Alarm Tickets Opened to Cloud Team GNI Not assigned Mark ticket as resolved or Assign to person in ROTA 5 21/04/2016 HEPiX Spring 2016 Workshop14

Missing things… Pass data between jobs ( Share jobs between Projects ( Resume job from where error occurred ( Configure scheduled jobs to be run once (AT jobs) ( Allow user interaction ( 21/04/2016 HEPiX Spring 2016 Workshop15

Summary Rundeck is a great platform, easy to use and deploy Active development and increasing user community Adapt its behaviour to your preferences via custom plugins Valid for simple jobs but also for more complicated workflows 21/04/2016 HEPiX Spring 2016 Workshop16

Questions? Thank you for your attention! 21/04/2016 HEPiX Spring 2016 Workshop17

I like it. Where can start from? Web page: Oficial docs: Rundeck Trello Board for future ideas: Mailing list: discusshttp://groups.google.com/group/rundeck- discuss Puppet module: rundeckhttps://github.com/voxpupuli/puppet- rundeck 21/04/2016 HEPiX Spring 2016 Workshop19