Book Image

Learn Ansible

By : Russ McKendrick
Book Image

Learn Ansible

By: Russ McKendrick

Overview of this book

Ansible has grown from a small, open source orchestration tool to a full-blown orchestration and configuration management tool owned by Red Hat. Its powerful core modules cover a wide range of infrastructures, including on-premises systems and public clouds, operating systems, devices, and services—meaning it can be used to manage pretty much your entire end-to-end environment. Trends and surveys say that Ansible is the first choice of tool among system administrators as it is so easy to use. This end-to-end, practical guide will take you on a learning curve from beginner to pro. You'll start by installing and configuring the Ansible to perform various automation tasks. Then, we'll dive deep into the various facets of infrastructure, such as cloud, compute and network infrastructure along with security. By the end of this book, you'll have an end-to-end understanding of Ansible and how you can apply it to your own environments.

Related Content you might be interested in

Current Title:

Small book image
Learn Ansible
Russ McKendrick
Jun, 2018 | 578 pages
Small book image
Ansible Quick Start Guide
Mohamed Alibi
Sep, 2018 | 214 pages
Small book image
Infrastructure as Code for Beginners
Russ McKendrick
May, 2023 | 222 pages
Small book image
Practical Ansible 2
Fabio Alessandro Locati | Daniel Oh | James Freeman
Jun, 2020 | 410 pages
Table of Contents (20 chapters)
Preface
Preface
Who this book is for
What this book covers
To get the most out of this book
Get in touch
Free Chapter
1
An Introduction to Ansible
An Introduction to Ansible
Ansible's story
Ansible versus other tools
Summary
Further reading
2
Installing and Running Ansible
Installing and Running Ansible
Technical requirements
Installing Ansible
Launching a virtual machine
An introduction to playbooks
Summary
Questions
Further reading
3
The Ansible Commands
The Ansible Commands
Technical requirements
Inbuilt commands
Third-party commands
Summary
Questions
Further reading
4
Deploying a LAMP Stack
Deploying a LAMP Stack
Technical requirements
Playbook structure
LAMP stack
Summary
Questions
Further reading
5
Deploying WordPress
Deploying WordPress
Technical requirements
Preinstallation tasks
WordPress installation tasks
Running the WordPress playbook
Summary
Questions
Further reading
6
Targeting Multiple Distributions
Targeting Multiple Distributions
Technical requirements
Launching multiple Vagrant boxes
Multi-operating system considerations
Adapting the roles
Running the playbook
Summary
Questions
Further reading
7
The Core Network Modules
The Core Network Modules
Technical requirements
Manufacturer and device support
Interacting with a network device
Summary
Questions
Further reading
8
Moving to the Cloud
Moving to the Cloud
Technical requirements
Interacting with DigitalOcean
WordPress on DigitalOcean
Summary
Questions
Further reading
9
Building Out a Cloud Network
Building Out a Cloud Network
Technical requirements
An introduction to AWS
The VPC playbook
Summary
Questions
Further reading
10
Highly Available Cloud Deployments
Highly Available Cloud Deployments
Technical requirements
Planning the deployment
The playbook
Summary
Questions
Further reading
11
Building Out a VMware Deployment
Building Out a VMware Deployment
Technical requirements
An introduction to VMware
The VMware modules
An example playbook
Summary
Questions
Further reading
12
Ansible Windows Modules
Ansible Windows Modules
Technical requirements
Up-and-running
Installing a web server
Interacting with AWS Windows instances
Summary
Questions
Further reading
13
Hardening Your Servers Using Ansible and OpenSCAP
Hardening Your Servers Using Ansible and OpenSCAP
Technical requirements
OpenSCAP
Preparing the host
The playbook
Summary
Questions
Further reading
14
Deploying WPScan and OWASP ZAP
Deploying WPScan and OWASP ZAP
Preparing the boxes
The WordPress playbook
The scan playbook
Summary
Questions
Further reading
15
Introducing Ansible Tower and Ansible AWX
Introducing Ansible Tower and Ansible AWX
Technical requirements
Web-based Ansible
Ansible Tower
Ansible AWX
Summary
Questions
Further reading
16
Ansible Galaxy
Ansible Galaxy
Technical requirements
Introduction to Ansible Galaxy
Jenkins playbook
Publishing a role
Ansible Galaxy commands
Summary
Questions
Further reading
17
Next Steps with Ansible
Next Steps with Ansible
Integrating with third-party services
The Ansible playbook debugger
Real-world examples
Summary
Further reading
18
Assessments
Assessments
Chapter 2, Installing and Running Ansible
Chapter 3, The Ansible Commands
Chapter 4, Deploying a LAMP Stack
Chapter 5, Deploying WordPress
Chapter 6, Targeting Multiple Distributions
Chapter 7, The Core Network Modules
Chapter 8, Moving to the Cloud
Chapter 9, Building Out a Cloud Network
Chapter 10, Highly Available Cloud Deployments
Chapter 11, Building Out a VMware Deployment
Chapter 12, Ansible Windows Modules
Chapter 13, Hardening Your Servers Using Ansible and OpenSCAP
Chapter 14, Deploying WPScan and OWASP ZAP
Chapter 15, Introducing Ansible Tower and Ansible AWX
19
Other Books You May Enjoy
Other Books You May Enjoy
Leave a review - let other readers know what you think

Summary

In this chapter, we created a playbook that generated a playbook to remediate any PCI-DSS non-compliance errors found during a scan. As well as being really cool, it is also really practical if you imagine you are running a few dozen servers that all need to be compliant, and also that they all need a full audit history.

You now have the foundations of a playbook that you can use to target those hosts daily, to both audit them and store the results away from the host itself, but also depending on your configuration, you have a way of automatically resolving any non-conformance found during the scan.

The scans we have been doing in this chapter have all been host-based; in the next chapter, we are going to look at how we can scan hosts remotely.

Previous Section
End of Section 6
Next Section