Presentation is loading. Please wait.

Presentation is loading. Please wait.

Intro to Config Management Using Salt Open Source

Published byDerrick Johnson Modified over 6 years ago

Similar presentations

Presentation on theme: "Intro to Config Management Using Salt Open Source"— Presentation transcript:

1 Intro to Config Management Using Salt Open Source
Salt - it makes everything better!

2 Config Management Tools: Chef, Puppet, Salt, Ansible
Purpose: Ensure the design and build state of a system is known, good, & trusted Benefits: Self-documenting Improves consistency, efficiency, and reliability once established Faster problem resolution History of changes (if stored in git) Ability to enforce controls (pull requests, approvals, etc.)

3 Why Not Ansible? vs. Agentless? Speed Functionality
Not exactly Salt-SSH Speed SSH vs. ZeroMQ Functionality Grains, encrypted pillars, events & orchestration, salt mine, etc. Clean and clear code vs.

4 I could be totally wrong...
Why Not Ansible? I could be totally wrong...

5 Any CM is better than no CM.
Why Not Ansible? but that’s OK! Any CM is better than no CM.

6 Salt Overview Salt Master Salt Minions Execution Modules
States (Formulas) Grains Pillar Top File Runners Returners Reactor Salt Cloud / Salt Virt Salt SSH

7 Central management system
Central management system. This system is used to send commands and configurations to the Salt minion that is running on managed systems.

8 Managed system. This system runs the Salt minion which receives commands and configuration from the Salt master.

9 Salt Flexibility Agent & Server Agent-Only (Masterless)
Server-Only (Agentless, i.e. Salt-SSH)

10 Execution Modules Ad hoc commands executed from the command line against one or more managed systems. Useful for: Real-time monitoring, status, and inventory One-off commands and scripts Deploying critical updates

11 States (Formulas) /srv/salt
A declarative or imperative representation of a system configuration.

12 Grains Grains are static information about the underlying managed system and include operating system, memory, and many other system properties. You can also define custom grains for any system.

13 Pillar User-defined variables. These secure variables are defined and stored on the Salt Master and then ‘assigned’ to one or more minions using targets. Salt pillar data stores values such as ports, file paths, configuration parameters, and passwords. You can use GPG to encrypt values/file contents as well.

14 Top File Matches formulas and Salt pillar data to Salt minions.
/srv/salt/vim.sls /srv/salt/top.sls Matches formulas and Salt pillar data to Salt minions. /srv/salt/apache.sls

15 Runners Modules that execute on the Salt master to perform supporting tasks. Salt runners report job status, connection status, read data from external APIs, query connected Salt minions, and more. For example, the Orchestrate runner coordinates configuration deployments across many systems.

16 Returners Send data returned by Salt minions to another system, such as a database. Salt returners can run on the Salt minion or on the Salt master.

17 Reactor Trigger reactions when events occur in your SaltStack environment.

18 Salt Cloud / Salt Virt Provision systems on cloud providers / hypervisors and immediately bring them under management.

19 Salt SSH Run Salt commands over SSH on systems that do not have a Salt minion. This is Ansible’s approach for everything.

20 Salt Overview Salt Master Salt Minions Execution Modules
States (Formulas) Grains Pillar Top File Runners Returners Reactor Salt Cloud / Salt Virt Salt SSH

21 Getting Started Salt Bootstrap or see https://repo.saltstack.com
Salt Master (Server) curl -L -o install_salt.sh sudo sh install_salt.sh -P -M Open ports 4505 & 4506 to servers Salt Minions curl -L -o install_salt.sh sudo sh install_salt.sh -P -A saltmaster.domain.com Accept keys on Salt Master salt-key -A (and verify the list before saying yes…)

22 The Cool Stuff Remote Execution Targeting Globbing ‘web*’
Regex -E ‘web1-(prod|dev)’ Lists -L ‘web1,db1,proxy1’ Grains or Pillars -G ‘os_family:RedHat’ Compound -C ‘* and not Node Groups -N critical (defined in master config, i.e. /etc/salt/master.d/nodes.conf) IPs/subnets -S or -S /24

23 The Cool Stuff - LIVE DEMO!!!
Remote Execution test.ping test.version status.version cmd.run disk.percent cron.ls root grains.items firewalld.list_all pkg.upgrade

24 The Cool Stuff - LIVE DEMO!!!
Runners (survey.diff) salt-run survey.diff '*' cmd.run 'cat /etc/resolv.conf'

25 The Cool Stuff - LIVE DEMO!!!
Config Management States, Formulas, Pillar state.show_top state.show_highstate pillar.items state.apply

26 The Cool Stuff Config Management GPG/PGP

27 The Cool Stuff Config Management Jinja, Files

28 The Cool Stuff - (SORT OF) LIVE DEMO!!!
Salt Cloud salt-cloud -m /etc/salt/cloud.maps.d/demo.map salt-cloud -m /etc/salt/cloud.maps.d/demo.map -d games.paulw.io

29 Getting Started - Tips Start Slow & Simple
Users Cron jobs Manage a file served from the Salt master Manage a file or directory from a git repo Manage firewall rules Learn to use formulas ( Test! - salt ‘minion_id’ state.apply test=true Take snapshots before applying states (if using VMs) Ask for help - Salt Community Level up your Salt GPG encrypted pillars for secrets (see here) GitFS backend or Git repo with automated pulls on commits

30 Getting Started - Tutorials & Documentation

31 Questions? pdw@udel.edu github.com/pauldalewilliams
Salt - it makes everything better!

Download ppt "Intro to Config Management Using Salt Open Source"

Similar presentations

Implementing Tableau Server in an Enterprise Environment

Implementing Tableau Server in an Enterprise Environment
METALOGIC s o f t w a r e © Metalogic Software Corporation 2004-2006 DACS Developer Overview DACS – the Distributed Access Control System.

METALOGIC s o f t w a r e © Metalogic Software Corporation DACS Developer Overview DACS – the Distributed Access Control System.
© 2013 Adobe Systems Incorporated. All Rights Reserved. Adobe Confidential. Jim Donahue | Principal Scientist Adobe Systems Technology Lab Flint: Making.

© 2013 Adobe Systems Incorporated. All Rights Reserved. Adobe Confidential. Jim Donahue | Principal Scientist Adobe Systems Technology Lab Flint: Making.
Module 14: WCF Send Adapters. Overview Lesson 1: Introduction to WCF Send Adapters Lesson 2: Consuming a Web Service Lesson 3: Consuming Services from.

Module 14: WCF Send Adapters. Overview Lesson 1: Introduction to WCF Send Adapters Lesson 2: Consuming a Web Service Lesson 3: Consuming Services from.
LiveCycle Data Services Introduction Part 2. Part 2? This is the second in our series on LiveCycle Data Services. If you missed our first presentation,

LiveCycle Data Services Introduction Part 2. Part 2? This is the second in our series on LiveCycle Data Services. If you missed our first presentation,
Puppet with vSphere Workshop Install, configure and use Puppet on your laptop for vSphere DevOps Billy Lieberman August 1, 2015.

Puppet with vSphere Workshop Install, configure and use Puppet on your laptop for vSphere DevOps Billy Lieberman August 1, 2015.
1 PUPPET AND DSC. INTRODUCTION AND USAGE IN CONTINUOUS DELIVERY PROCESS. VIKTAR VEDMICH PAVEL PESETSKIY AUGUST 1, 2015.

1 PUPPET AND DSC. INTRODUCTION AND USAGE IN CONTINUOUS DELIVERY PROCESS. VIKTAR VEDMICH PAVEL PESETSKIY AUGUST 1, 2015.
Ansible with vCloud Air Workshop

Ansible with vCloud Air Workshop
Wordpress with Mina Automated Deployment Solution Jonathan Gravato DIG 4104c.

Wordpress with Mina Automated Deployment Solution Jonathan Gravato DIG 4104c.
8-1 10 Oracle Data Integrator Agents. 8-2 Understanding Agents.

Oracle Data Integrator Agents. 8-2 Understanding Agents.
1 Chapter Overview Defining Operators Creating Jobs Configuring Alerts Creating a Database Maintenance Plan Creating Multiserver Jobs.

1 Chapter Overview Defining Operators Creating Jobs Configuring Alerts Creating a Database Maintenance Plan Creating Multiserver Jobs.
Overview of the Automated Build & Deployment Process Johnita Beasley Tuesday, April 29, 2008.

Overview of the Automated Build & Deployment Process Johnita Beasley Tuesday, April 29, 2008.
Ceilometer + Gnocchi + Aodh Architecture

Ceilometer + Gnocchi + Aodh Architecture
Infrastructure as code. “Enable the reconstruction of the business from nothing but a source code repository, an application data backup, and bare metal.

Infrastructure as code. “Enable the reconstruction of the business from nothing but a source code repository, an application data backup, and bare metal.
IT 456-01 System Administration Lesson 3 Dr Jeffrey A Robinson.

IT System Administration Lesson 3 Dr Jeffrey A Robinson.
Sponsored by the National Science Foundation Today’s Exercise.

Sponsored by the National Science Foundation Today’s Exercise.
Hyperion Artifact Life Cycle Management Agenda  Overview  Demo  Tips & Tricks  Takeaways  Queries.

Hyperion Artifact Life Cycle Management Agenda  Overview  Demo  Tips & Tricks  Takeaways  Queries.
IBM Express Runtime Quick Start Workshop © 2007 IBM Corporation Deploying a Solution.

IBM Express Runtime Quick Start Workshop © 2007 IBM Corporation Deploying a Solution.
Ansible and Ansible Tower 1 A simple IT automation platform. www.europeanspallationsource.se 20 November 2015 Leandro Fernandez and Blaž Zupanc.

Ansible and Ansible Tower 1 A simple IT automation platform November 2015 Leandro Fernandez and Blaž Zupanc.
Cloud Installation & Configuration Management. Outline  Definitions  Tools, “Comparison”  References.

Cloud Installation & Configuration Management. Outline  Definitions  Tools, “Comparison”  References.

Similar presentations

Ads by Google