Skip to content

Latest commit

 

History

History

demo3

Folders and files

NameName
Last commit message
Last commit date

parent directory

..
README.md
README.md
 
 
demo3.sh
demo3.sh
 
 
inventory.ini
inventory.ini
 
 
playbook.yml
playbook.yml
 
 

README.md

Cygate Techdays 2019

Ansible automation demo for Cygate Techdays 2019 by Christofer Tibbelin

Ansible Demo 3 📖

Building our first playbook instead of console commands and run this playbook

add some more server to the inventory and put them in groups

The [linux] group point to the other two groups as children

[server_internal]
server1
server2

[ubuntu_dmz]
dmz1
dmz2

[linux:children]
server_internal
ubuntu_dmz

write a simple playbook in YAML to update and upgrade servers with apt module

Here is manual for APT module on Ansible

---
- hosts: linux
  become: true #run as sudo
  gather_facts: true

  tasks:
    - name: Only run update cache if the last one is more than 3600 seconds ago
      apt:
        update_cache: yes
        cache_valid_time: 3600

    - name: Safe upgrade all packages to the latest version if OS is Debian based
      apt:
        upgrade: yes
      when: ansible_facts['os_family'] == "Debian"

    - name: Clean system with autoremove
      apt:
        autoremove: yes

run the playbook to update servers as root via sudo

ansible-playbook -i inventory.ini --ask-become-pass playbook.yml

login to server1 to verify that it's upgraded

ssh server1.mylocal
sudo apt upgrade

Demo 4 🔒

Secure our sudo password with Ansible Vault