Cloud Forms Orchestration

-
Ansible Automation
Walter Brunelli
Solution Architect Infrastructure
RH Forum Zürich, 13. September 2016
CLOUD FORMS

Orchestration of
- container infrastructure
- virtual infrastructure
- private & public cloud
 IT ON THE PATH TO HYBRID ENVIRONMENTS

3
 COMPLEXITY IS GOING THROUGH THE ROOF
CONTAINERS
100x

1x 10x 10x 10x

SOFTWARE-DEFINED NETWORKING

SOFTWARE-DEFINED STORAGE

4
 WHAT IS NEEDED?

Unified management
Comprehensive insight
Full operational control

… a.k.a. Cloud Management Platform

6
TYPICAL CLOUD FORMS ARCHITECTURE
 CLOUD FORMS DELIVERS

UNIFIED COMPLETE VISIBILITY COMPLIANCE INTEGRATION

MANAGEMENT LIFE-CYCLE AND AND OF OTHER
AND MANAGEMENT ANALYTICS GOVERNANCE MANAGEMENT
OPERATIONS PRODUCTS

11
KEY BENEFITS AND USE-CASES
● Self-Service Portal with Approval Process: Provisioning & Retirement of VMs
● Cost allocation & Chargeback
● Reporting : Management and User reporting
● Relationship View, Monitoring, Capacity Planning
● Smart-State-Analysis: Tracks changes of your VM in time, Find a specific user in your IT environment,
compare 2 VMs, Check if your environment is compliant, Enforce compliance, Build a new VM with new
version of Apps
● V2V-Migrations (Eg. VMWare to RHEV, VMWare to Cloud, Azure to Google). MOD1 to MOD2 migrations
● Integrates with Satellite, SCCM, Ansible-Tower

Orchestration of :
● Public Cloud Providers : Azure/Amazon/Google, Private Cloud : RH OpenStack
● Virtualized Environment :VMWarer, RHEV, Hyper-V ; OS Images as Templates : Linux, Windows
● Container Environment via Openshift or Kubernates
 TRUSTED BY COMPANIES WORLDWIDE,
RECOGNIZED AS A LEADER
CUSTOMERS COMMUNITY AWARDS

15
HOW TO START WITH CLOUD FORMS

● Web: redhat.com/cloudforms
● Youtube : Nice CloudForms videos
● Ask our sales for an evaluation subscription
● We / our partners help you with the first setup
● CloudForms already included in your RH-OpenStack or
OpenShift subscription
Automation with
Ansible &
Ansible Tower
Walter Brunelli
Solution Architect Infrastructure
2016
 WHY IS AUTOMATION SO IMPORTANT?
• Stability
• Jobs are always executed the exactly same way

• Time saving
• By delegating jobs to operations

• Compliance
• Stick to company / ITIL processes
• Auditing
 WHY WAS ANSIBLE CREATED ?
• Open Source Project started in 2012 by Michael De Haan
(Cobbler author)
• Because existing Configuration Management projects were
not good enough
• Target : Allow task execution
• On specific hosts & in a specific order
• Without an agent on target nodes
 WHAT IS ANSIBLE ?
A radical simple IT AUTOMATION engine for repeating jobs! Eg.
• Multi-host Software-Deployment
• Configuration-Management
• Deployment

How ?
• Agentless and with Playbooks

For whom?
• Operators, Administrators, Developers

Products
• Ansible Core + Ansible Tower

Nr 1 OpenSource Automation Project

PRINCIPLES OF ANSIBLE
 Ansible’s Capabilities and Use-Cases
Deploy, Configure, Manage :
• Linux (RHEL, CentOS, Ubuntu, Debian, BSD, MacOS.) & Unix (Solaris, AIX, HP-UX)
• Windows (via winrm/PowerShell-Remoting)
• Cloud (Amazon, Azure, Centurylink, CloudStack, DigitalOcean, Eucalyptus, Rackspace, GoogleCloud, OpenStack)
• Container Environment (Kubernetes, Docker)
• Virtualized Environment (VMWare, RHEV, XEN)
• Middleware (RabbitMQ, JBoss, etc.)
• Network Devices, Firewalls, LoadBalancer (Cisco, Juniper, F5, Arista, A10, OpenSwitch)
• Big Data and Analytics Environments (Hadoop, Riak, Aerospike)
• Databases (MySql, MariaDB, MSSQL, Postgres, MongoDB, HANA, Vertica)
• Monitoring & Notification (IRC, Mail, Slack, Telegram, SMS, etc.)
Ansible Core
 WHAT IS ANSIBLE CORE ?
• Community version of Ansible
• No support
• Important Features missing (Auditing, Job
Scheduling, Role Based Access Control)
• Not ideal for Production Environment
ARCHITECTURE
EXECUTION EXAMPLE
LOOK HOW EASY ANSIBLE IS
Hand made Shell Script :

Ansible Playbook :
EXECUTE A PLAYBOOK
Ansible Tower
 ADVANTAGES OF ANSIBLE TOWER
• Web UI
• Integrates with LDAP, AD,IDM + GitHUB/Galaxy
• Inventory Integration : CMDB, Cloud
• Compliance : Reporting+Auditing (Every job is logged and can be traced)
• Role Based Access Control
• Separation of rights / Delegation of tasks, Eg. Recurring jobs to Operating
• Monitoring : Sends Alarm if a job fails or a config is found wrong
• Job Scheduling
• Multi-Organization
• REST API : All functionalities available over the API
 Ansible Tower Use-Cases
Almost every repeatable and programmable Process :

•Automated Application and Service Deployment

•Automated Add/Removal of customers/users in your environment
•Automated patching of servers
•Rolling updates of your IT environemnt
•Run jobs on a weekly/monthly/yearly basis
TOWER Editions
 Good Links to start with Ansible
• Documentation / Get started
docs.ansible.com
docs.ansible.com/intro_getting_started.html
• Playbooks :
galaxy.ansible.com
github.com/ansible
●
Ask for Evaluation subscription on ansible.com/tower-trial
●
As a download : for 3 month and up to 10 nodes
●
As a vagrant demo
●
Amazon EC2
●
We or our partner help you with the first setup
Thank you !
Walter Brunelli
Solution Architect Infrastructure