Agenda: ansible-for-vms.htm

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
  <meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
  <meta http-equiv="Content-Style-Type" content="text/css" />
  <meta name="generator" content="pandoc" />
  <title>Three steps to Ansible enlightenment</title>
  <style type="text/css">code{white-space: pre;}</style>
  <link rel="stylesheet" href="../style.css" type="text/css" />
</head>
<body>
<div id="header">
<h1 class="title">Three steps to Ansible enlightenment</h1>
</div>
<div id="TOC">
<ul>
<li><a href="#use-ansible-to-run-shell-commands"><span class="toc-section-number">1</span> Use ansible to run shell commands</a></li>
<li><a href="#using-ansible-modules"><span class="toc-section-number">2</span> Using ansible modules</a><ul>
<li><a href="#install-a-package"><span class="toc-section-number">2.1</span> Install a package</a></li>
<li><a href="#copy-a-file"><span class="toc-section-number">2.2</span> Copy a file</a></li>
<li><a href="#create-a-directory"><span class="toc-section-number">2.3</span> Create a directory</a></li>
</ul></li>
<li><a href="#writing-playbooks"><span class="toc-section-number">3</span> Writing playbooks</a></li>
<li><a href="#optional-guru-level-roles"><span class="toc-section-number">4</span> Optional Guru level: Roles</a></li>
</ul>
</div>
<p>Can you use ansible to apply updates to all your VMs? Yes you can! You can start simple and grow as your experience develops.</p>
<p>Edit the file <code>/etc/ansible/hosts</code> as root (remember <code>sudo</code>) and add all your VMs under a group heading, like this:</p>
<pre><code>[vms]
host1.ws.nsrc.org
host2.ws.nsrc.org
host3.ws.nsrc.org</code></pre>
<p>or the short form:</p>
<pre><code>[vms]
host[1:3].ws.nsrc.org</code></pre>
<h1 id="use-ansible-to-run-shell-commands"><a href="#use-ansible-to-run-shell-commands"><span class="header-section-number">1</span> Use ansible to run shell commands</a></h1>
<pre><code># ansible vms [-u sysadm] -skK -m shell -a &#39;apt-get install -y bash&#39;</code></pre>
<p>Here is an explanation of the flags</p>
<dl>
<dt><code>-u sysadm</code></dt>
<dd><p>login as user <code>sysadm</code> (only required if the login username is different from your local username)</p>
</dd>
<dt><code>-s</code></dt>
<dd><p>use sudo to get root on the remote machine</p>
</dd>
<dt><code>-k</code></dt>
<dd><p>prompt for login password</p>
</dd>
<dt><code>-K</code></dt>
<dd><p>prompt for sudo password (just hit Enter to use the same password)</p>
</dd>
<dt><code>-m shell</code></dt>
<dd><p>invoke the shell module</p>
</dd>
<dt><code>-a '...'</code></dt>
<dd><p>arguments to the shell module (i.e. which shell command to run)</p>
</dd>
</dl>
<p>This is very easy, but it will not work if the remote command prompts for input. (The flag <code>-y</code> to apt-get assumes &quot;yes&quot; to confirmation prompts)</p>
<p>To specify a different inventory file use the <code>-i</code> option, e.g. <code>-i myhosts</code></p>
<h1 id="using-ansible-modules"><a href="#using-ansible-modules"><span class="header-section-number">2</span> Using ansible modules</a></h1>
<p>Your next step is to start learning the specific <a href="http://docs.ansible.com/modules_by_category.html">ansible modules</a> for each system administration task. Here are some common ones.</p>
<h2 id="install-a-package"><a href="#install-a-package"><span class="header-section-number">2.1</span> Install a package</a></h2>
<p>Use the <a href="http://docs.ansible.com/apt_module.html">apt module</a> to install packages on Ubuntu and Debian hosts.</p>
<pre><code># ansible vms [-u sysadm] -skK -m apt -a &#39;pkg=bash state=present&#39;</code></pre>
<h2 id="copy-a-file"><a href="#copy-a-file"><span class="header-section-number">2.2</span> Copy a file</a></h2>
<p>Use the <a href="http://docs.ansible.com/copy_module.html">copy module</a>. Example: to copy a file <code>foo</code> from the current directory to <code>/etc/foo</code> on the target hosts, and set the mode to make it world-readable:</p>
<pre><code># ansible vms [-u sysadm] -skK -m copy -a &#39;src=foo dest=/etc/foo mode=644&#39;</code></pre>
<h2 id="create-a-directory"><a href="#create-a-directory"><span class="header-section-number">2.3</span> Create a directory</a></h2>
<p>The <a href="http://docs.ansible.com/file_module.html">file module</a> can set the ownership and mode of files, and also create directories.</p>
<pre><code># ansible vms [-u sysadm] -skK -m file -a &#39;path=/etc/bar state=directory&#39;</code></pre>
<p>Use <code>state=absent</code> to delete a file or a directory and its contents.</p>
<h1 id="writing-playbooks"><a href="#writing-playbooks"><span class="header-section-number">3</span> Writing playbooks</a></h1>
<p>Once you know the ansible module and arguments, you can put them into a playbook, e.g. <code>foo.yml</code></p>
<pre><code>- hosts:
    - vms
  tasks:
    - apt: pkg=bash state=installed</code></pre>
<p>and run it:</p>
<pre><code># ansible-playbook [-u sysadm] -skK foo.yml</code></pre>
<p>Now you can make a single playbook which performs multiple tasks.</p>
<h1 id="optional-guru-level-roles"><a href="#optional-guru-level-roles"><span class="header-section-number">4</span> Optional Guru level: Roles</a></h1>
<p>Roles make your tasks easier to re-use in multiple playbooks. Create a directory <code>roles</code>, inside that a subdirectory for the role name (say &quot;bar&quot;), and inside that a subdirectory <code>tasks</code></p>
<p>Now create file <code>roles/bar/tasks/main.yml</code></p>
<pre><code>- apt: pkg-bash state=installed</code></pre>
<p>Then foo.yml becomes:</p>
<pre><code>- hosts:
    - vms
  roles:
    - bar</code></pre>
<p>Any files you want to copy can be stored in <code>roles/bar/files/...</code></p>
</body>
</html>