Your Automation Journey Ansible Automation Platform: Overview, Technical Introduction, and Demo of an Automation Vision Ahmed Gaber Solution Architect Linkedin 

Agenda 1. Automation Journey 2. Ansible Engine 3. Ansible Tower 4. Ansible Learning Path 5. Conclusion and Q&A 

LINE OF BUSINESS OPERATIONS DEVELOPERS INFRASTRUCTURE SECURITY NETWORK • Custom apps and functionality • Public cloud • Innovation budget • Device management • Reconfigure network • Network quarantine • Vulnerabilities • Compliance • Incident response • Deploy servers and OS • Day 2 maintenance • ITIL services • Deploy containers • GitOps, CI/CD • Dev environments • Reliability of on-prem • Public cloud sizing • Application environments • High Availability Teams are automating within their domains and tools 

LINE OF BUSINESS SECURITY OPERATIONS INFRASTRUCTURE NETWORK DEVELOPERS Breaking Silos & Share Knowledge 

basic provisioning and configuration Server automation multiple domains Network automation connecting “islands of automation” Collaboration ISLANDS OF AUTOMATION DIGITAL TRANSFORMATION % of automated enterprise IT workloads collaborative automation with federated insights Modernization How do we centralise our processes? How do we orchestrate our processes? How can we simplify our job? TACTIC STRATEGIC OPPORTUNISTIC MOST OF THE CUSTOMERS ARE TYPICALLY HERE WE WANT TO MOVE YOUR COMPANY HERE! “Administrative Efficiency” to “Organisational Effectiveness” 

Level 1 Level 2 Level 3 Level 4 Level 5 Aware Opportunistic Tactical Strategical Optimized Speed Scale Reliability Effort per change “Administrative Efficiency” to “Organisational Effectiveness” 

Lines of business Network Operations Security Infrastructure Developers Red Hat Ansible Tower: Operate and control at scale. Red Hat Ansible Engine: Universal language of automation Accelerate Ansible Content Collections Collaborate Automation Hub Governance Automation services catalog Trust Certified content Fueled by an open source community Inform Automation Analytics 

What can I do using Ansible? Automate the deployment and management of your entire IT footprint. Orchestration Do this... Firewalls Configuration Management Application Deployment Provisioning Continuous Delivery Security and Compliance On these... Load Balancers Applications Containers Clouds Servers Infrastructure Storage And more... Network Devices 

Cloud Virt & Container Windows Network Security Monitoring Ansible automates technologies you use The Magic is in the Modules AWS Azure Digital Ocean Google OpenStack Rackspace +more Docker VMware RHV OpenStack OpenShift +more ACLs Files Packages IIS Regedits Shares Services Configs Users Domains +more A10 Arista Aruba Cumulus Bigswitch Cisco Dell Extreme F5 Lenovo MikroTik Juniper OpenSwitch +more Checkpoint Cisco CyberArk F5 Fortinet Juniper IBM Palo Alto Snort +more Dynatrace Datadog LogicMonitor New Relic Sensu +more Devops Jira GitHub Vagrant Jenkins Slack +more Storage Netapp Red Hat Storage Infinidat +more Operating Systems RHEL Linux Windows +more 

“Adopting Red Hat Ansible Automation has not only changed how our networks are managed, but also sparked a cultural transformation within our organization.” Bart Dworak Software Engineering Manager, Infrastructure and Operations, Network Source: “Red Hat Ansible Automation Accelerates Past Major Adoption Milestone, Now Manages More Than Four Million Customer Systems Worldwide," 11 Sep. 2019. 

Why Ansible? Simple Powerful Agentless Cross Platform App deployment Configuration management Workflow orchestration Network automation Orchestrate the app lifecycle Human readable automation No special coding skills needed Tasks executed in order Usable by every team Get productive quickly Agentless architecture Uses OpenSSH & WinRM No agents to exploit or update Get started immediately More efficient & more secure 

Red Hat Ansible Engine: Universal language of automation 

Engage Ansible SaaS: Engage users with an automation focused experience Red Hat Ansible Automation Platform Lines of business Network Operations Security Infrastructure Developers Ansible Tower: Operate & control at scale Fueled by an open source community Scale Create Simple Human readable automation Powerful Thousands of integrations Agentless No agents to exploit or update 

ANSIBLE AUTOMATION ENGINE CMDB USERS INVENTORY HOSTS NETWORK DEVICES PLUGINS CLI MODULES ANSIBLE PLAYBOOK PUBLIC / PRIVATE CLOUD SSH, WinRM API 

ANSIBLE AUTOMATION ENGINE CMDB USERS HOSTS NETWORK DEVICES CLI ANSIBLE PLAYBOOK PUBLIC / PRIVATE CLOUD PUBLIC / PRIVATE CLOUD MODULES PLUGINS INVENTORY INVENTORY List of systems in your infrastructure that automation is executed against [web] webserver1.example.com webserver2.example.com [db] dbserver1.example.com [switches] leaf01.internal.com leaf02.internal.com [firewalls] checkpoint01.internal.com [lb] f5-01.internal.com 

ANSIBLE AUTOMATION ENGINE USERS HOSTS NETWORK DEVICES CLI ANSIBLE PLAYBOOK MODULES PLUGINS INVENTORY PUBLIC / PRIVATE CLOUD PUBLIC / PRIVATE CLOUD CLOUD Red Hat Openstack, Red Hat Satellite, VMware, AWS EC2, Rackspace, Google Compute Engine, Azure CMDB 

ANSIBLE AUTOMATION ENGINE USERS HOSTS NETWORK DEVICES CLI ANSIBLE PLAYBOOK MODULES PLUGINS INVENTORY CMDB ServiceNow, Cobbler, BMC, Custom cmdb PUBLIC / PRIVATE CLOUD PUBLIC / PRIVATE CLOUD CMDB 

ANSIBLE AUTOMATION ENGINE USERS CLI ANSIBLE PLAYBOOK MODULES PLUGINS INVENTORY PUBLIC / PRIVATE CLOUD PUBLIC / PRIVATE CLOUD CMDB HOSTS NETWORK DEVICES AUTOMATE EVERYTHING Red Hat Enterprise Linux, Cisco routers, Arista switches, Juniper routers, Windows hosts, Check Point firewalls, NetApp storage, F5 load balancers and more 

ANSIBLE AUTOMATION ENGINE CMDB USERS INVENTORY HOSTS NETWORK DEVICES PLUGINS CLI MODULES ANSIBLE PLAYBOOK PUBLIC / PRIVATE CLOUD PUBLIC / PRIVATE CLOUD PLAYBOOKS ARE WRITTEN IN YAML Tasks are executed sequentially Invoke Ansible modules 

ANSIBLE AUTOMATION ENGINE CMDB USERS INVENTORY HOSTS NETWORK DEVICES PLUGINS CLI ANSIBLE PLAYBOOK PUBLIC / PRIVATE CLOUD PUBLIC / PRIVATE CLOUD MODULES ARE “TOOLS IN THE TOOLKIT” Python, Powershell, or any language Extend Ansible simplicity to the entire stack MODULES - name: latest index.html file is present template: src: files/index.html dest: /var/www/html/ 

--- - name: install and start apache hosts: web become: yes tasks: - name: httpd package is present yum: name: httpd state: latest - name: latest index.html file is present template: src: files/index.html dest: /var/www/html/ - name: httpd is started service: name: httpd state: started 

Red Hat Ansible Tower: Operate and control at scale 

Engage Ansible SaaS: Engage users with an automation focused experience Red Hat Ansible Automation Platform Lines of business Network Operations Security Infrastructure Developers Fueled by an open source community Ansible Engine: Universal language of automation Create Scale Control Web UI and API Delegation Role Based Access Controls Scale Scalable Execution Capacity 

Ansible Tower is a UI and RESTful API allowing you to scale IT automation, manage complex deployments and speed productivity. ➔ Role-based access control ➔ Deploy entire applications with push-button deployment access ➔ All automations are centrally logged ➔ Powerful workflows match your IT processes What is Ansible Tower? 

Inventory is a collection of hosts (nodes) with associated data and groupings that Ansible Tower can connect to and manage. ➔ Hosts (nodes) ➔ Groups ➔ Inventory-specific data (variables) ➔ Static or dynamic sources Inventory 

Credentials are utilized by Ansible Tower for authentication with various external resources: ➔ Connecting to remote machines to run jobs ➔ Syncing with inventory sources ➔ Importing project content from version control systems ➔ Connecting to and managing network devices Centralized management of various credentials allows end users to leverage a secret without ever exposing that secret to them. Credentials 

Project A project is a logical collection of Ansible Playbooks, represented in Ansible Tower. You can manage Ansible Playbooks and playbook directories by placing them in a source code management system supported by Ansible Tower, including Git, Subversion, and Mercurial. 

Webhooks - Enabling GitOps Trigger Job Templates or Workflows straight via configurable webhooks Automatically provision, update, configure, and apply based on pushes to your source control. 

Everything in Ansible Tower revolves around the concept of a Job Template. Job Templates allow Ansible Playbooks to be controlled, delegated and scaled for an organization. Job templates also encourage the reuse of Ansible Playbook content and collaboration between teams. A Job Template requires: ➔ An Inventory to run the job against ➔ A Credential to login to devices. ➔ A Project which contains Ansible Playbooks Job Templates 

Workflows Conditional logic can be applied to workflows. If this job fails this next Job is run! Create powerful holistic automation using Ansible Workflows. Orchestration can easily be configured by linking Job Templates. Workflow approvals allow Workflows to pause and wait for human interaction 

Enterprise Authentication Use your existing enterprise authentication including: • Azure AD • Github • Google OAuth2 • LDAP • Radius • SAML • TACACS+ Multiple supported enterprise authentication methods are easily integrated with Ansible Tower 

Fully browsable API, everything within the Web UI can be accessed via the API for programmatic access This structured JSON output contains clickable links RESTful API 

Multiple supported 3rd party external logging methods are easily integrated with Ansible Tower Centralized Logging Ansible Tower creates a centralized control point for Ansible Automation. If desired Ansible Tower can integrated with existing log aggregation services. 

Job Templates, Inventory, Credentials and Projects can be assigned to specific Users and Teams. Role Based Access Control (RBAC) Clicking the USERS or TEAMS buttons shows available options 

Self-Service IT Tower lets you launch Playbooks with just a single click. It can prompt you for variables, let you choose from available secure credentials and monitor the resulting deployments. 

36 Ansible Engine Components DEMO Agenda Ansible Servers Automation Ansible Network Automation Ansible Role Based Access Control General Ansible Tower Features 

Red Hat Ansible Automation Platform Lines of business Network Operations Security Infrastructure Developers Fueled by an open source community Ansible Engine: Universal language of automation Create Ansible Tower: Operate & control at scale Scale Engage Knowledge Automation Analytics Trusted Certified content Collaborate Automation Hub Accelerate Collections 

Discover, publish, and manage Collections Automation Hub Quickly discover available Red Hat and certified content through Collections. Manage and test your organization’s view of available content. Manage your locally available automation via on-premise. 

Customer Controlled Customers can run their own private instances of Automation Hub on-premise. Customizable Content Catalog Synch Community (Galaxy) and Supported (Automation Hub) sources, supply internal users with governed and approved content in one controlled location Private Content Manage the lifecycle and internal distribution of in-house Ansible content. Customer deployable Automation Hub Private Automation Hub 

3000+ Ansible modules 40,000+ Stars on GitHub 2,000,000+ Downloads a month 

Red Hat Ansible Automation Platform Customers Healthcare Financial Services Oil & Gas High Tech Government Other 

Get started Join the community Workshops and training Share your story Training and Next steps: ansible.com/get-started ansible.com/workshops Ansible Essentials Course Red Hat Ansible Trial Version Red Hat Ansible Courses ansible.com/community Follow us @Ansible Friend us on Facebook 

Questions ? Feedback and Survey 

linkedin.com/company/red-hat youtube.com/user/RedHatVideo s facebook.com/redhatinc twitter.com/RedHat 44 THANK YOU