Red Hat SummitBest practices for automation execution
Adopt these best practices to help ensure scalable, maintainable, and highly efficient automation. This guidance focuses on using source control, dynamic inventories, and robust file structures within automation controller.
Use source control
Automation controller supports playbooks stored directly on the server. Therefore, you must store your playbooks, roles, and any associated details in source control.
This way you have an audit trail describing when and why you changed the rules that are automating your infrastructure. Additionally, it permits sharing of playbooks with other parts of your infrastructure or team.
Ansible file and directory structure
Follow recommended directory structures for Ansible projects to organize playbooks, inventories, and variables. A consistent layout improves maintainability and scaling.
To ensure reliable and consistent automation, follow these best practices for managing your content:
- Package reusable content, such as roles, modules, and plugins into Ansible Collections.
- Reference all necessary Collections for a project in the project’s
requirements.ymlfile. These dependencies are automatically installed into the execution environment (EE) at runtime, but only if they are not already present in the EE image. - Do not import content from other projects or common file-system locations, such as
/opt, at runtime. All content must be explicitly defined within the EE. - Working directory: The playbook directory is used as the current working directory at runtime. However, always use the
playbook_dirvariable instead of relying on the current working directory path.
Automation controller does not support interactive features.
- Avoid using the
vars_promptfeature, as automation controller does not permit interactive questions. For user input, use Surveys in job templates. - Do not use the
pausefeature without a timeout. Automation controller does not permit canceling a pause interactively. Ifpauseis necessary, you must set a timeout.
Use dynamic inventory sources
Define an inventory synchronization process by using dynamic sources, such as a cloud provider or CMDB, to help ensure your infrastructure inventory in automation controller stays consistently up-to-date.
Edits and additions to Inventory host variables persist beyond an inventory synchronization as long as --overwrite_vars is not set.
Variable management for inventory
Variables associated with hosts and groups in an inventory can be managed in several ways in automation controller.
Keep variable data with the hosts and groups definitions (see the inventory editor), rather than using group_vars/ and host_vars/. If you use dynamic inventory sources, automation controller can synchronize such variables with the database while the Overwrite Variables option is not set.
Autoscale
Use the "callback" feature to permit newly booting instances to request configuration for auto-scaling scenarios or provisioning integration.
Larger host counts
Set "forks" on a job template to larger values to increase parallelism of execution runs.
Continuous integration / Continuous deployment
Continuous Integration (CI) and Continuous Deployment (CD) are development practices that require developers to integrate code into a shared repository several times a day.
Each integration can then be verified by an automated build and automated tests. CI/CD is a method to deliver applications to customers by introducing automation into the stages of app development.
The main concepts attributed to CI/CD are continuous integration, continuous delivery, and continuous deployment. Automation controller can be integrated with CI/CD systems to enable automated provisioning, configuration management, application deployment, and other IT tasks as part of the CI/CD pipeline.
For a Continuous Integration system, such as Jenkins, to create a job, it must make a curl request to a job template. The credentials to the job template must not require prompting for any particular passwords.
Automation controller tips and tricks
Automation controller provides tools, commands, and output to help you manage your automation platform.
| Tool or task | Description |
|---|---|
| Automation controller CLI Tool | Full-featured command CLI. See AWX manage utility for more information. |
| Change the automation controller Administrator password | Use the command: awx-manage changepassword admin To set policies at creation time for password validation using Django, see Django password policies. |
| Create a System Administrator (superuser) from the command line | Use the command: awx-manage createsuperuser |
| Use the API to obtain the Ansible Automation Platform outputs for commands in JSON format | Go to: https://<controller server name>/api/v2/jobs/<job_id>/job_events/ |
| View ansible_variables or "facts" about systems Ansible manages | Run the setup module as an ad hoc action: ansible -m setup hostname |
- Set up a jump host to use with automation controller
- Locate and configure the Ansible configuration file
- The ALLOW_JINJA_IN_EXTRA_VARS variable
- Configure the controllerhost hostname for notifications
- Launch Jobs with curl
- Filter instances returned by the dynamic inventory sources in automation controller
- Use an unreleased module from Ansible source with automation controller
- Connect to Windows with winrm
- Import existing inventory files and host/group vars into automation controller
'%20d='M201.5%20305.5c-13.8%200-24.9-11.1-24.9-24.6%200-13.8%2011.1-24.9%2024.9-24.9%2013.6%200%2024.6%2011.1%2024.6%2024.9%200%2013.6-11.1%2024.6-24.6%2024.6zM504%20256c0%20137-111%20248-248%20248S8%20393%208%20256%20119%208%20256%208s248%20111%20248%20248zm-132.3-41.2c-9.4%200-17.7%203.9-23.8%2010-22.4-15.5-52.6-25.5-86.1-26.6l17.4-78.3%2055.4%2012.5c0%2013.6%2011.1%2024.6%2024.6%2024.6%2013.8%200%2024.9-11.3%2024.9-24.9s-11.1-24.9-24.9-24.9c-9.7%200-18%205.8-22.1%2013.8l-61.2-13.6c-3-.8-6.1%201.4-6.9%204.4l-19.1%2086.4c-33.2%201.4-63.1%2011.3-85.5%2026.8-6.1-6.4-14.7-10.2-24.1-10.2-34.9%200-46.3%2046.9-14.4%2062.8-1.1%205-1.7%2010.2-1.7%2015.5%200%2052.6%2059.2%2095.2%20132%2095.2%2073.1%200%20132.3-42.6%20132.3-95.2%200-5.3-.6-10.8-1.9-15.8%2031.3-16%2019.8-62.5-14.9-62.5zM302.8%20331c-18.2%2018.2-76.1%2017.9-93.6%200-2.2-2.2-6.1-2.2-8.3%200-2.5%202.5-2.5%206.4%200%208.6%2022.8%2022.8%2087.3%2022.8%20110.2%200%202.5-2.2%202.5-6.1%200-8.6-2.2-2.2-6.1-2.2-8.3%200zm7.7-75c-13.6%200-24.6%2011.1-24.6%2024.9%200%2013.6%2011.1%2024.6%2024.6%2024.6%2013.8%200%2024.9-11.1%2024.9-24.6%200-13.8-11-24.9-24.9-24.9z'/%3e%3c/svg%3e){kind=small}