Ansible Configuration Management with Playbooks : twtech Use Case.

Double-click on the image to zoom-out ...Larger.

To return to Home page: Refresh Page or Take ESC Button on Keyboard

Use Cases for Ansible Playbooks...twtech Environment

Ansible playbooks are widely used for automating IT operations. Here are some common use cases for Ansible playbooks:

1. Configuration Management

• Ensures systems are consistently configured across multiple servers.
• Example: Setting up users, configuring SSH, modifying system settings.

Example Playbook:

# yaml

- name: Configure SSH settings
  hosts: all
  tasks:
    - name: Disable root login
      lineinfile:
        path: /etc/ssh/sshd_config
        regexp: '^PermitRootLogin'
        line: 'PermitRootLogin no'
      notify: Restart SSH

  handlers:
    - name: Restart SSH
      service:
        name: sshd
        state: restarted

2. Software Deployment

• Automates application deployment to ensure consistency.
• Example: Deploying a web server, database, or microservices.

Example Playbook:

# yaml

- name: Deploy twtech-webapp Server
  hosts: twtech-webapp-servers
  tasks:
    - name: Install twtech-webapp
      apt:
        name: devopspatemf2021/webapps:version-1.9
        state: present

3. Patch Management & OS Updates

• Automates system updates across multiple machines.
• Example: Applying security patches to all servers.

Example Playbook:

# yaml

- name: Update all packages
  hosts: all
  tasks:
    - name: Update package cache and upgrade system
      apt:
        update_cache: yes
        upgrade: dist

4. Security & Compliance Automation

• Enforces security policies like firewall rules, user access control, and SSH hardening.

Example Playbook:

# yaml

- name: Configure Firewall
  hosts: all
  tasks:
    - name: Allow only SSH and HTTP(S)
      ufw:
        rule: allow
        port: "{{ item }}"
        proto: tcp
      loop:
        - 22
        - 80
        - 443

5. Cloud Infrastructure Provisioning

• Automates provisioning of cloud resources in AWS, Azure, GCP.
• Example: Creating an EC2 instance on AWS.

Example Playbook:

# yaml

- name: Launch an EC2 instance
  hosts: localhost
  tasks:
    - name: Create EC2 instance
      amazon.aws.ec2_instance:
        name: twtech-instance
        instance_type: t2.medium
        image_id: <ami-xyxyxyxyxyxyxy>
        count: 1
        region: us-east-2

6. Container Orchestration

• Automates Docker and Kubernetes deployments.
• Example: Deploying a containerized application.

Example Playbook:

# yaml

- name: Start a Docker container
  hosts: docker_server
  tasks:
    - name: Run twtech-springapp in Docker-server 
      docker_container:
        name: twtech-springapp
        image: devopspatemf2021/twtech:twtech-spring-boot-mongo
        state: started
        ports:
          - "80:80"

7. Database Management

• Automates database installation and configuration.
• Example: Deploying and setting up MySQL.

Example Playbook:

# yaml

- name: Install and configure MySQL
  hosts: twtechdb_servers
  tasks:
    - name: Install twtech-MySQL
      apt:
        name: twtech-mysql-server
        state: present
    - name: Start twtech-MySQL service
      service:
        name: twtech-mysql
        state: started

8. Continuous Integration/Continuous Deployment (CI/CD)

• Integrates with Jenkins, GitLab, GitHub Actions to automate deployments.

Example Playbook:

# yaml

- name: Deploy application from Git
  hosts: twtech-app_servers
  tasks:
    - name: Clone Git repository
      git:
        repo: 'https://github.com/Devopspat35/maven_web_application.git'
        dest: /var/www/app
        version: main

9. Network Automation

• Automates network device configuration (Cisco, Juniper, Arista).
• Example: Configuring a Cisco router.

Example Playbook:

# yaml

- name: Configure Cisco router
  hosts: routers
  tasks:
    - name: Set hostname
      ios_config:
        lines:
          - hostname twtech-Router

10. Backup and Disaster Recovery

• Automates system and database backups.

Example Playbook:

# yaml

- name: Backup Database
  hosts: twtech-db_server
  tasks:
    - name: Dump twtech-MySQL database
      command: msqldump -u root -p twtech-db > /backup/twtech-db.sql

Ansible playbooks offer:  scalability, repeatability, and consistency, making ansible-playbooks, essential for modern automation.

Addendum:

Double-click on the image to zoom-out ...Larger.

To return to Home page: Refresh Page or Take ESC Button on Keyboar

Above: Steps in writing and executing playbooks

Double-click on the image to zoom-out ...Larger.

To return to Home page: Refresh Page or Take ESC Button on Keyboard.

 Above: Steps on How to create ansible vault, encrypt content and pass the vault password when running a playbook

 Double-click on the image to zoom-out ...Larger.

To return to Home page: Refresh Page or Take ESC Button on Keyboard.

Above: Steps in writing and executing ansible playbooks... twtech use-case

 Double-click on the image to zoom-out ...Larger.

To return to Home page: Refresh Page or Take ESC Button on Keyboard

Above: How to authenticate secret variables in ansible playbooks.

Double-click on the image to zoom-out ...Larger.

To return to Home page: Refresh Page or Take ESC Button on Keyboard

Above: How to use encrypted ansible-vault and vaultpass to run adhoc commands

Double-click on the image to zoom-out ...Larger.

To return to Home page: Refresh Page or Take ESC Button on Keyboard

Above: How to reference sensitive data in a playbook with variables.

Double-click on the image to zoom-out ...Larger.

To return to Home page: Refresh Page or Take ESC Button on Keyboard

Above: How secrets variables like passwords, sshKeys, certificates are handled in Ansible.

 Double-click on the image to zoom-out ...Larger.

To return to Home page: Refresh Page or Take ESC Button on Keyboard.

Above: How to decrypt ansible vault secrets in Ansible.

Double-click on the image to zoom-out ...Larger.

To return to Home page: Refresh Page or Take ESC Button on Keyboard.

Above: How to gather information about the hosts (other nodes) using Ansible ad-hoc command.

Double-click on the image to zoom-out ...Larger.

To return to Home page: Refresh Page or Take ESC Button on Keyboard.

Above: How to ping host with encrypted secrets in Ansible.