Ansible Notes

Create 2 instances and start them

Set up on ACM:

********************************

Step1:

**************

go to vim /etc/ssh/sshd_config

i

scroll down

remove the # for password Authentication Yes

Add # for password Authentication No

:wq!

Step 2:

**************

Create password for ec2-user

# passwd ec2-user

Newpassword:

ConfirmPassword:

********************

Step 3:

***********

Add ec2-user in sudoers files and give all permission

# vim /etc/sudoers

i

scroll down

under root add like this

ec2-user ALL=NOPASSWD: ALL

**************************

Step 4:

Restart your sshd connection

# systemctl restart sshd

*******************

Repeat all the 4 steps on Host machine also and restart the sshd connection on host machine.

************************

Install Ansible :

Step 1:

*************

# yum list | grep ansible // you will not find ansible package as default in yum

So install epel replositories and it will ass ansible to yum repository

# yum install epel-release

// copy the command sudo amazon-linux-extras install epel and execute it

# sudo amazon-linux-extras install epel

give y

Complete!

You will ansible package is now available with yum

# yum list | grep ansible

//ansible will be available (wait for few seconds)

# yum install ansible

press y

again press y

Complete!

# ansible --version

version of ansible isntalled will be displayed.

*****************************************

CREATE INVENTORY ON ACM and ADD Host details

*****************************************

# vim /etc/ansible/hosts

Scroll down to end and add

[webservers]

paste private ip of host ==> 172.31.39.169

:wq!

***********************************************

OPEN SECURE SHELL CONNECTION

***********************************************

Step 1: change to ec2-user

# su - ec2-user

# ssh-keygen

press enter

press enter

press enter

ssh key will be generated

Step 2: copy key on to the host

# ssh-copy-id -i ec2-user@private ip of host

press yes

enter passowrd ==>

ssh connection will be done

In the message we will have a command to loginto the host from ACM, execute it

# ssh 'ec2-user@172.31.35.169'

we will be connected to the host

exit

back to ACM

*****************************************

Modules in ANSIBLE

1. adhoc ping command

# ansible -m ping webservers

response will be a pong from all hosts under webservers

Module2 : command

# ansible -m command -a "uptime" webservers

will give the uptime of hosts in webservers

To chekc all modules in ansible

# ansible-doc -l

use up arrow key and down arrow key to scroll up and down.

press q to exit

********************************

Playbook2 -- For TomCat

# sudo vim playbook2.yml

i

---

- hosts: webservers

become: true

become_user: root

tasks:

- name: install tomcat

yum: name=tomcat state=present

- name: start tomcat

service: name=tomcat state=started

- name: deploy war file

get_url:

url=https://tomcat.apache.org/tomcat-7.0-doc/appdev/sample/sample.war

dest=/usr/share/tomcat/webapps

notify: restart tomcat

handlers:

- name: restart tomcat

service: name=tomcat state=restarted

Syntax check:

# ansible-playbook playbook1.yml --syntax-check

# ansible-playbook playbook1.yml

********************************************

playbook.yml (httpd) and deploy a html page

# sudo vim playbook.yml

i

---

- hosts: webservers

become: true

become_user: root

tasks:

- name: install httpd

yum: name=httpd state=present

- name: start httpd

service: name=httpd state=started

- name: deploy html file

copy: src=/etc/ansible/index.html dest=/var/www/html

notify: restart httpd

handlers:

- name: restart httpd

service: name=httpd state=restarted

:wq!

Check syntax

# ansible-playbook playbook.yml --syntax-check

Now run the playbook

# ansible-playbook playbook.yml

*************************************

docker deplyment

---

- hosts: webservers

become: true

become_user: root

tasks:

- name: install docker

yum: name=docker state=present

- name: start docker

service: name=docker state=started

- name: install git

yum: name=git state=present

- name: get the dockerfile from githib

git: repo=https://github.com/Sonal0409/dockerdemo.git dest=/tmp/gitrepo

- name: build dockerfile

command: chdir=/tmp/gitrepo docker build -t deployimage:ansible .

- name: run the dockerfile

command: docker run -itd -P deployimage:ansible

*****************************************

Ansible Tower is supported by the following operating systems:

Red Hat Enterprise Linux 6 64-bit

Red Hat Enterprise Linux 7 64-bit

CentOS 6 64-bit

CentOS 7 64-bit

Ubuntu 12.04 LTS 64-bit

Ubuntu 14.04 LTS 64-bit

Ubuntu 16.04 LTS 64 bit

You should have the latest stable release of Ansible.

64-bit support required (kernel and runtime) and 20 GB hard disk.

Minimum 2 GB RAM (4+ GB RAM recommended) is required.

2 GB RAM (minimum and recommended for Vagrant trial installations

4 GB RAM is recommended /100 forks

For Amazon EC2: Instance size of m3.medium or larger is required for less than 100 hosts and if you have more than 100 hosts, then you require an instance size of m3.xlarge or larger.

For HA MongoDB setups, you can use the below formula for a rough estimate of the amount of space required.

Installation of Ansible Tower

Before you install Ansible Tower, you have to first install and configure Ansible on your operating system and then also install PostgreSQL.

So, first let’s start by installing and configuring Ansible. I will be using Ubuntu – 16.04 version as my operating system.

Install and Configure Ansible on Ubuntu

Step 1: As a root user, configure the Ansible PPA using the below commands.

apt-get install software-properties-common

apt-add-repository ppa:ansible/ansible

Step 2: After configuring, install Ansible using the below commands.

apt-get update

apt-get install ansible

After you are done installing, install PostgreSQL.

Installing PostgreSQL

Use the below commands, to install PostgreSQL.

apt-get update

sudo apt-get install postgresql postgresql-contrib

Download Ansible Tower

Step 1.1: Once you are done installing Ansible, register to download the Ansible – Tower.

Step 1.2: You will receive an email after you register to download the Ansible Tower. Open your mail and then click on the download button, to download.

Step 1.3: Then extract the Ansible Tower installation tool using the below commands.

tar xvzf ansible-tower-setup-latest.tar.gz

ansible-tower-setup-<tower_version>

where tower-version, is the version of the tower you have downloaded.

Step 2: After that set up your inventory file, where you have to mention the necessary passwords (admin_password, pg_password, rabbitmq_password) in the inventory file.

Step 3: Now, as the Tower setup playbook script uses the inventory file, it has to be invoked as ./setup.sh from the path where you unpacked the Tower installer tarball.

./setup.sh

Step 4: Once you are done setting up the Tower, use the web browser to access the Tower server and view the Tower login screen, wherein you have to enter the username and password, to access the Tower Dashboard.

Create a User

To create a user, go the settings option and then choose the User tab. Once you enter the User tab, click on the Add option to add a new User. Mention the details required and then click on Save.

Create an Inventory

Now, create an Inventory, by just clicking on the Inventories option and then going to the Add option.

Once you click on the Add option, mention all the details required like the name, description, organization and then click on Save.

Create a Host

To create a host, go the Inventories tab and choose the inventory to which you want to add hosts. Then choose the Hosts tab and click on Add Hosts. Here I want to add hosts for the inventory that was created above. Once the details are mentioned, click on Save.

Create a Credential

After creating hosts, create a credential by going to the settings options, and then choose the Credentials tab. After that, go to the Add option and mention the details. Once you are done, mentioning the details, click on Save.

Setting up a Project

There are two ways to access a simple playbook, either you can do it manually or by specifying a link from a Github repository.

In this blog, I am going to access the project manually.

Accessing a Manually created Playbook

For accessing a manually created playbook, you first have to create a playbook and then set up the project.

So, follow the below steps and start creating a playbook.

Use command line console as a root user and create a directory for your project on the Tower server file system, in which to store your Ansible playbooks for this project.

Now, make a new project directory by creating it on the Tower filesystem under the Project Base Path directory, located by default in “/var/lib/awx/projects/”. Here the new directory is DEMO.

Now, let’s start setting up a project.

To set up a project use your web browser, create the new project by clicking on the Projects link at the top of the Tower Dashboard and click on the Add button.

Once you click on the Add button, you will be redirected to a page wherein you have to fill in details such as Name and Description of Project. Then, set the SCM type to be Manual, and for the Playbook Directory, select a value which corresponds to the subdirectory you created and then click on Save.

Create a Job Template

Now, let’s create a Job Template, by going to the Job Template tab and then clicking on the Add button. Once you click on the Add button, you will be re-directed to the page where you have to fill in the details such as Name, Description, Inventory name, Project, Playbooks, Credentials.

Launch a Job

From the Job Templates overview screen, click the Launch button(rocket symbol) to run the Job Template. When you launch the job you can clearly see at the end of the output that the message has been printed.