Upload
others
View
21
Download
0
Embed Size (px)
Citation preview
AUTOMATING THEENTERPRISE with ANSIBLE
Chris SaundersSr. Cloud Solutions Architect
Automation is impacting every aspect of life and is undergoing a shift from
discrete, disconnected to holistic and integrated
NAVIGATION SYSTEMSTell us where to turn
REAR CAMERASGuide us to places we can’t easily see
BACKUP SENSORSAlert us when to stop
BUT THIS IS WHAT WE REALLY WANTSystems that don’t just talk to us,
but talk to each otherPhoto via Volvo
EVEN MORE INTERESTING
Systems of self-driving cars
Photo via Google
TODAY’S IT ARCHITECTURES are rapidly changing and business demands infinite flexibility.
LINE OF BUSINESS
DEVELOPERS
IT OPERATIONS
CEO
IT OPERATIONS BEARS THE BURDEN
DYNAMIC ENVIRONMENTS DEMAND NEW MANAGEMENT TOOLS
GOVERNANCE, RISK, COMPLIANCEANALYTICS, O
PTIMIZATIO
N
AWSAZURE GCPOPENSTACK
ORCHESTRATION & AUTOMATION
RHV
SELF-SERVICE PORTALS, SERVICE CATALOGS, DASHBOARDS
FIN
ANCI
AL M
ANAG
EMEN
T
PUBLIC CLOUDPRIVATE CLOUD
VSPHERESCVMM
No matter where you are on your path to digital transformation, you can make an impact with automation.
How are you thinking about management?
What is your automation strategy?
SERVERS CLOUD NETWORK
APPS
CONTAINERS
AUTOMATION IN ENTERPRISE IT TODAY
AUTOMATED SILOS ARE
SILOS
STILL
AUTOMATION IN ENTERPRISE IT TODAY
Milind Govekar, Research VP Gartner
“Most current use of automation in IT involves scripting. Scripts are more fragile than agile. What you end up with is
disconnected islands of automationwith spaghetti code throughout the organization when what you need is a systematic, enterprise-wide lasagne.”
ReferenceSmarter with Gartner: Automation: The Next Frontier for IT May 18, 2016 Contributor Susan Moore http://www.gartner.com/smarterwithgartner/automation-the-next-frontier-for-it-2/
AUTOMATESORGANIZATIONS
Isolated scripts
AUTOMATES FUNCTIONS
Integratedautomation
Ansible solves these problems where no other technology has been able to do so.
SIMPLE AGENTLESS EXTENSIBLE
DEV QA/SECURITY IT OPERATIONSBUSINESS
ANSIBLE IS THE UNIVERSAL LANGUAGE
CLOUD VIRT & CONTAINER WINDOWS NETWORK CHAT MONITORING
ANSIBLE AUTOMATES TECHNOLOGIES YOU USE1000+ INTEGRATIONS
AWSAzureCenturyLinkDigital OceanDockerGoogleOpenStackRackspace+more
DockerVMwareRHEVOpenStackOpenShiftAtomicCloudStack+more
ACLsFilesPackagesIISRegeditsSharesServicesConfigsUsersDomains+more
AristaA10CumulusBigswitchCiscoCumulusDellF5JuniperPalo AltoOpenSwitch+more
HipChatIRCJabberEmailRocketchatSendgridSlackTwilio+more
AirbrakeBigPandaDatadogLogicMonitorMonitNagiosNew RelicPagerDutySensuStackDriverZabbix+more
20 CONFIDENTIAL
WHAT CAN I DO WITH ANSIBLE?
Automate the deployment and management of your entire IT footprint.
Orchestration
Do this...
Firewalls
Configuration Management
Application Deployment Provisioning Continuous
DeliverySecurity and Compliance
On these...
Load Balancers Applications Containers Clouds
Servers Infrastructure Storage And more...Network Devices
21 CONFIDENTIAL
CROSS PLATFORM
Agentless support for all major OS variants, physical, virtual, cloud and network devices.
HUMAN READABLE
Perfectly describe and document every aspect of your application environment.
PERFECT DESCRIPTION OF APPLICATION
Every change can be made by Playbooks, ensuring everyone is on the same page.
VERSION CONTROLLED
Playbooks are plain-text. Treat them like code in your existing version control.
DYNAMIC INVENTORIES
Capture all the servers 100% of the time, regardless of infrastructure, location, etc.
ORCHESTRATION PLAYS WELL WITH OTHERS
Every change can be made by Playbooks, ensuring everyone is on the same page.
THE ANSIBLE WAY
22 CONFIDENTIAL
WHAT IS ANSIBLE AUTOMATION?
---- name: install and start apache hosts: all vars: http_port: 80 max_clients: 200 remote_user: root
tasks: - name: install httpd yum: pkg=httpd state=latest
- name: write the apache config file template: src=/srv/httpd.j2 dest=/etc/httpd.conf
- name: start httpd service: name=httpd state=started
[user@hostname: $] ansible-playbook -i inventory playbook.yml
PLAY [install and start apache] ***********************************
TASK [Gathering Facts] ********************************************
ok: [webserver.local]
TASK [install httpd] **********************************************
changed: [webserver.local]
TASK [write the apache config file] ********************************
changed: [webserver.local]
TASK [start httpd] *************************************************
changed: [webserver.local]
PLAY RECAP *********************************************************
webserver.local : ok=4 changed=3 unreachable=0 failed=0
Ansible Tower is an enterprise framework for controlling, securing and managing your Ansible automation with a UI and RESTful API.
Ansible is an open source community project sponsored by Red Hat. It’s a simple automation language that can perfectly describe IT application environments in Ansible Playbooks.
Only respects security in place at host user level
No abstraction of remote host or cloud credentials from user
No guarantee of execution parameters or integrity of Playbook as designed by the team
Creates an isolated runtime environment to control execution of Ansible
Abstracts security credentials and specifics from end user
Guarantees execution parameters as designed for the playbook
Ansible solves the problem of automating and orchestrating
Does not address bigger picture security/compliance
Tower spotlights security considerations and provides predictability
Role-based access control and secure credential storage
API integrations, accountability and execution history
DEMO
THANK YOUplus.google.com/+RedHat
linkedin.com/company/red-hat
youtube.com/user/RedHatVideos
facebook.com/redhatinc
twitter.com/RedHatNews