Book Image

Hands-On Enterprise Automation on Linux

By : James Freeman
Book Image

Hands-On Enterprise Automation on Linux

By: James Freeman

Overview of this book

Automation is paramount if you want to run Linux in your enterprise effectively. It helps you minimize costs by reducing manual operations, ensuring compliance across data centers, and accelerating deployments for your cloud infrastructures. Complete with detailed explanations, practical examples, and self-assessment questions, this book will teach you how to manage your Linux estate and leverage Ansible to achieve effective levels of automation. You'll learn important concepts on standard operating environments that lend themselves to automation, and then build on this knowledge by applying Ansible to achieve standardization throughout your Linux environments. By the end of this Linux automation book, you'll be able to build, deploy, and manage an entire estate of Linux servers with higher reliability and lower overheads than ever before.
Table of Contents (23 chapters)
1
Section 1: Core Concepts
5
Section 2: Standardizing Your Linux Servers
10
Section 3: Day-to-Day Management
16
Section 4: Securing Your Linux Servers

Chapter 10 - Managing Users on Linux

  1. They provide an emergency route into the server in case of failure of the directory service.
  2. The user module.
  3. Run an ad hoc Ansible command and use the password_hash filter to generate the hash, as in this example:
$ ansible localhost -i localhost, -m debug -a "msg={{ 'secure123' | password_hash('sha512') }}"
  1. The realmd package.
  2. Create a template to match the file on the group of servers, and then write a role/playbook with a task to deploy the template. Run the playbook in check mode and if changed status results occur, then the templated file differs from the configuration on the servers.
  3. If you get a directive wrong in sudoers, the worst-case scenario is you will lock yourself out of becoming root on your server (hence preventing you from fixing the problem). Validating the file helps to prevent this.
  4. A directory...