Presentation is loading. Please wait.

Presentation is loading. Please wait.

Introduction to Ansible

Published byOscar Harrell Modified over 7 years ago

Similar presentations

Presentation on theme: "Introduction to Ansible"— Presentation transcript:

1 Introduction to Ansible
Anthony Critelli Introduction to Ansible

2 Introduction to Ansible
But first: There’s a live demo Sign up for info at: demo.acritelli.com If you’re already pretty comfortable with Ansible, please leave room for others I only have 20 demos Introduction to Ansible

3 Introduction to Ansible
Overview Introduction to Ansible

4 Automation and Config Management
Need ways to quickly and consistently deploy infrastructure Back in the day: bash, Perl scripts, and duct tape Today: standard tools, such as Puppet, Chef, Ansible, AWS CloudFormation, etc. Abstract away the underlying commands If the syntax of yum were to suddenly change, you wouldn’t have to update all of your scripts Manage the config – check into a repo, code review, etc. Introduction to Ansible

5 Infrastructure as Code
Everything about a piece of infrastructure is codified In a human-readable format Easier to maintain state Easier to backup/recover Instead of backing up an entire VM, why not just back up the end-state configuration? Infrastructure code can be peer-reviewed, checked into repositories, etc. This continues to get easier as more services expose an API to administrators Introduction to Ansible

6 Introduction to Ansible
What is Ansible? “Simple IT Automation” Very easy to get up and running Simple architecture – just a control machine for basic deployments Agentless Works over SSH Push-model by default Ansible server connects to managed hosts and executes commands Introduction to Ansible

7 Introduction to Ansible
YAML YAML Ain’t Markup Language (YAML) Data serialization language Simple and straightforward syntax Used for expressing Ansible playbooks Introduction to Ansible

8 A quick note about documentation
The Ansible docs are great Intro tutorials Module documentation Lots of examples Also read the best practices Particularly useful for larger projects Introduction to Ansible

9 Introduction to Ansible
Technical Details Introduction to Ansible

10 Introduction to Ansible
So, how does it work? Playbooks are executed against hosts (inventory) The playbooks contain a series of tasks Tasks are units of work/configuration policy Use modules to accomplish their goal Modules are “reusable, standalone scripts” Ex: The “get_url” module downloads a file via HTTP, HTTPS, or FTP and places it on a host Introduction to Ansible

11 Introduction to Ansible
Inventory Hosts are defined in an inventory file INI-like format /etc/ansible/hosts You can group hosts together Define all of your webservers under one header Hosts or groups of hosts can have their own variables Ex: We want all servers in our NY datacenter to use a certain syslog server Dynamic inventory – automatically pull inventory from an external source, such as AWS Introduction to Ansible

12 Introduction to Ansible
Sample inventory [webservers] web02.example.com [databases] db-[a:f].example.com [rochester:swillburg] swillserver[01:20].rochester.example.com Introduction to Ansible

13 Introduction to Ansible
Variables Variables can be defined in MANY places The right place depends on your environment But always try to write reusable code Written in YAML syntax Single variables, lists, dictionaries Introduction to Ansible

14 Introduction to Ansible
Variable examples #Single variable webdirectory: /var/www/html/mysite/ #List users: - bob - alice #Dictionary server_params: max_connections: 10 port: 8080 Introduction to Ansible

15 Introduction to Ansible
Facts When Ansible connects to a remote host, it collects information about the host Obtained via the “setup” module Hostname, distro, etc. This information can be accessed in your playbooks Setup module can be turned off Benefits for scalability when you don’t need a system’s facts Introduction to Ansible

16 Introduction to Ansible
Jinja2 Ansible supports templating with Jinja2 Allows you to reference variables in file templates, which are then placed on remote hosts Example: specify certain ntp servers (variable) for hosts in a specific region (rochester:swillburg) Introduction to Ansible

17 Let’s take a look at a task
- name: install ntp yum: pkg=ntp state=present become: yes #Executes task as root user Introduction to Ansible

18 Introduction to Ansible
Handlers Tasks that are executed when a module changes the system Restart a service when a config file is changed Only executed once when called, no matter how many modules call a handler tasks: - name: disable password login lineinfile: path=/etc/ssh/sshd_config line=“PasswordAuthentication no” notify: restart ssh handlers: - name: restart ssh service: name=sshd state=restarted Introduction to Ansible

19 Introduction to Ansible
Tags Tags can also be used to further classify plays and tasks For example: maybe there’s a set of tasks that you want to run separately from the rest of the playbook Example: updating packages and rotating keys Might be in a larger play of many tasks Only need to perform full system update and update SSH keys sometimes Tags can be specified when running Ansible Introduction to Ansible

20 Introduction to Ansible
A simple playbook - hosts: all vars: user: donald tasks: - name: create user user: name={{ user }} createhome=yes - name: update packages yum: name=* state=latest Introduction to Ansible

21 Cool, so how do we call a playbook?
ansible-playbook -i <hostsFile> <playbookName> Executes as the user who is calling the playbook on the control machine Unless you specify a different user in the playbook itself Introduction to Ansible

22 Introduction to Ansible
Roles Best practices indicate that roles should be used in larger deployments Roles specify a special file hierarchy that abstracts imports For example: you might have a webserver role The webserver role, and all of its supporting files (variables, templates, etc.) are stored in a webserver folder Now, you can just specify that a host has the webserver role Allow you to begin describing your infrastructure in a more sensible way I want web01.example.com to be a webserver All webservers should also be “common servers” Introduction to Ansible

23 Introduction to Ansible
Personal Tips Don’t get 100% hung up on best practices The Ansible docs even say that the best architecture is one that works for you But: don’t use that as free license to ignore best practices If you’re stuck, write your script as one large playbook and then break it out later Tag things Great way to organize tasks Good for testing (i.e. tag a set of new tasks that you’re adding to your playbook, then only run those tasks) Introduction to Ansible

24 Pre-deployment Housekeeping
Introduction to Ansible

25 Prepping an Ansible control server
Install Ansible Available through many repositories For RHEL/CentOS: available through EPEL Create an Ansible user Username can be whatever, but I typically call it “ansible” Create an SSH key for the Ansible user Introduction to Ansible

26 Prepping a server for Ansible
Create the Ansible user Give the user passwordless sudo Or whatever methods are necessary to ensure that the Ansible user can execute the appropriate commands over SSH Copy the SSH public key for the Ansible user Password authentication supported but we usually use keys Introduction to Ansible

27 Introduction to Ansible
Let’s do it live Introduction to Ansible

28 Introduction to Ansible
Demo topology Introduction to Ansible

29 Introduction to Ansible
Actual AWS Topology Introduction to Ansible

30 Introduction to Ansible
Demo Code Introduction to Ansible

31 www.acritelli.com critellia@gmail.com
Questions? Comments? Introduction to Ansible

Download ppt "Introduction to Ansible"

Similar presentations

About Me CTO, Individual Digital, Inc. (Startup) Author of ext/tidy, PHP 5 Unleashed, Zend Ent. PHP Patterns

About Me CTO, Individual Digital, Inc. (Startup) Author of ext/tidy, PHP 5 Unleashed, Zend Ent. PHP Patterns
Reproducible Environment for Scientific Applications (Lab session) Tak-Lon (Stephen) Wu.

Reproducible Environment for Scientific Applications (Lab session) Tak-Lon (Stephen) Wu.
Talend 5.4 Architecture Adam Pemble Talend Professional Services.

Talend 5.4 Architecture Adam Pemble Talend Professional Services.
1 Introduction to Tool chains. 2 Tool chain for the Sitara Family (but it is true for other ARM based devices as well) A tool chain is a collection of.

1 Introduction to Tool chains. 2 Tool chain for the Sitara Family (but it is true for other ARM based devices as well) A tool chain is a collection of.
Microsoft Windows 2003 Server. Client/Server Environment Many client computers connect to a server.

Microsoft Windows 2003 Server. Client/Server Environment Many client computers connect to a server.
Partner Logo German Cancio – WP4-install LCFG HOW-TO - n° 1 WP4 hands-on workshop: EDG LCFGng exercises

Partner Logo German Cancio – WP4-install LCFG HOW-TO - n° 1 WP4 hands-on workshop: EDG LCFGng exercises
SCRAM Software Configuration, Release And Management Background SCRAM has been developed to enable large, geographically dispersed and autonomous groups.

SCRAM Software Configuration, Release And Management Background SCRAM has been developed to enable large, geographically dispersed and autonomous groups.
Chapter 2 Applying Practical Automation Speaker : Chuang-Hung Shih Date : 2010.3.09.

Chapter 2 Applying Practical Automation Speaker : Chuang-Hung Shih Date :
Sponsored by the National Science Foundation Configuration Management For Experimenters: Ansible Hands-On Sarah Edwards, GPO.

Sponsored by the National Science Foundation Configuration Management For Experimenters: Ansible Hands-On Sarah Edwards, GPO.
Software Engineering CSCI 201L Jeffrey Miller, Ph.D. HTTP :// WWW - SCF. USC. EDU /~ CSCI 201 USC CSCI 201L.

Software Engineering CSCI 201L Jeffrey Miller, Ph.D. HTTP :// WWW - SCF. USC. EDU /~ CSCI 201 USC CSCI 201L.
Cloud Standard API and Contextualization

Cloud Standard API and Contextualization
Ansible with vCloud Air Workshop

Ansible with vCloud Air Workshop
Wordpress with Mina Automated Deployment Solution Jonathan Gravato DIG 4104c.

Wordpress with Mina Automated Deployment Solution Jonathan Gravato DIG 4104c.
Networking in Linux. ♦ Introduction A computer network is defined as a number of systems that are connected to each other and exchange information across.

Networking in Linux. ♦ Introduction A computer network is defined as a number of systems that are connected to each other and exchange information across.
Sponsored by the National Science Foundation Today’s Exercise.

Sponsored by the National Science Foundation Today’s Exercise.
Installing Applications in FreeBSD lctseng. Computer Center, CS, NCTU 2 Before we start  Permission issue root: the super user Like administrator in.

Installing Applications in FreeBSD lctseng. Computer Center, CS, NCTU 2 Before we start  Permission issue root: the super user Like administrator in.
IBM Express Runtime Quick Start Workshop © 2007 IBM Corporation Deploying a Solution.

IBM Express Runtime Quick Start Workshop © 2007 IBM Corporation Deploying a Solution.
Automating Legacy Network Devices

Automating Legacy Network Devices
Ansible and Ansible Tower 1 A simple IT automation platform. www.europeanspallationsource.se 20 November 2015 Leandro Fernandez and Blaž Zupanc.

Ansible and Ansible Tower 1 A simple IT automation platform November 2015 Leandro Fernandez and Blaž Zupanc.
Cloud Installation & Configuration Management. Outline  Definitions  Tools, “Comparison”  References.

Cloud Installation & Configuration Management. Outline  Definitions  Tools, “Comparison”  References.

Similar presentations

Ads by Google