Getting Started with Ansible: Automating Your Workflow

Analytic Index

• Introduction
• What is Ansible
• Installing Ansible
• Understanding Ansible Architecture
• Ansible Playbooks
• Common Ansible Modules
• Using Ansible Roles
• Ansible Best Practices
• Advanced Ansible Features

Introduction

In the modern IT landscape, automation is no longer a luxury but a necessity. As infrastructure grows more complex, managing configurations, deployments, and updates manually becomes a daunting task. This is where Ansible comes in; Ansible is a powerful, simple, and agentless automation tool that helps you automate your workflow, making your operations more efficient and reliable. In this blog post we'll walk through the basics of Ansible, from installation to writing playbooks and using roles, setting you on the path to becoming proficient in automating your workflows.

What is Ansible?

Ansible is an open-source automation tool used for configuration management, application deployment, and task automation. Developed by Red Hat, Ansible is known for its simplicity and ease of use, making it a popular choice among IT professionals and developers.

Why Use Ansible?

There are several reasons why Ansible stands out as a preferred automation tool:

• Agentless: Unlike other automation tools, Ansible does not require any agent to be installed on the managed nodes. It uses SSH for communication, making it easier to set up and maintain.
• Simple YAML Syntax: Ansible playbooks are written in YAML, a human-readable data serialization standard, which makes it easy to write and understand.
• Idempotency: Ansible ensures that tasks are idempotent, meaning running the same task multiple times will not change the system beyond the desired state.
• Extensive Module Library: Ansible comes with a wide range of modules that cover most automation needs, from managing files and users to deploying applications and services.

Key Features of Ansible

• Playbooks: Playbooks are Ansible's configuration, deployment, and orchestration language. They describe the desired state of your systems in a simple, declarative manner.
• Modules: Ansible modules are reusable, standalone scripts that can be used in playbooks to perform specific tasks.
• Inventory: Ansible inventory is a list of managed nodes that Ansible can operate on.
• Roles: Roles allow you to organize playbooks and other Ansible artifacts into reusable components, making your configurations modular and maintainable.

Installing Ansible

Before you can start automating with Ansible, you need to install it on your computer to proceed

System Requirements

Ansible can be installed on various operating systems, including Linux, macOS, and Windows (using WSL). For this tutorial we will install it using pip, the python package manager.

1. Ensure pip is available:

   python3 -m pip -V
   

2. Install Ansible:

   python3 -m pip install --user ansible
   

3. Verify the installation:

   ansible --version
   

For detailed installation instructions for other operating systems, refer to the Ansible documentation.

Understanding Ansible Architecture

To effectively use Ansible, it's essential to understand its architecture and components.

• Control Node: the control node is the machine where Ansible is installed and from which you run your playbooks. It manages and orchestrates the tasks on the managed nodes. In this tutorial the control node will be the machine where you installed ansible above.

• Managed Nodes: managed nodes are the remote hosts or machines that Ansible controls. These nodes can be servers, virtual machines, or any devices that Ansible can SSH into.

• Inventory: the inventory is a file that lists all the managed nodes. It can be a simple text file with hostnames or IP addresses, or a more complex dynamic inventory script that pulls information from cloud providers or other sources:

[webservers]
web1.example.com
web2.example.com

[dbservers]
db1.example.com
db2.example.com

Ansible Playbooks

Playbooks are the heart of Ansible, allowing you to define the desired state of your infrastructure. A playbook is a YAML file that describes a series of tasks to be executed on managed nodes. Each task is defined by a module and its parameters.

Let’s write a simple playbook that installs Apache on a web server.

---
- name: Install Apache
  hosts: webservers
  become: yes
  tasks:
    - name: Ensure Apache is installed
      ansible.builtin.dnf:
        name: apache2
        state: present

    - name: Ensure Apache is running
      ansible.builtin.service:
        name: apache2
        state: started

Save this playbook as install_apache.yml and run it using the following command:

ansible-playbook install_apache.yml

Common Ansible Modules

Ansible modules are the building blocks of playbooks, performing specific tasks on the managed nodes. Here are some commonly used modules:

• File Module: the file module is used to manage files and directories.

- name: Create a directory
  ansible.builtin.file:
    path: /path/to/directory
    state: directory
    mode: '0755'

• User Module: the user module manages user accounts.

- name: Create a user
  ansible.builtin.user:
    name: johndoe
    state: present
    groups: sudo

• Service Module: the service module manages services.

- name: Start a service
  ansible.builtin.service:
    name: nginx
    state: started

Using Ansible Roles

Roles allow you to break down your playbooks into reusable components, making them easier to manage and maintain. Roles are a way to group related tasks, variables, files, templates, and handlers into a single unit. This modular approach helps in organizing complex playbooks.

To create a role, use the ansible-galaxy command:

ansible-galaxy init myrole

This command creates a directory structure for your role:

myrole/
├── defaults
│   └── main.yml
├── files
├── handlers
│   └── main.yml
├── meta
│   └── main.yml
├── tasks
│   └── main.yml
├── templates
├── tests
│   ├── inventory
│   └── test.yml
└── vars
    └── main.yml

You can now define tasks, handlers, and variables within this structure. To use the role in a playbook:

---
- name: Apply myrole
  hosts: webservers
  ansible.builtin.roles:
    - myrole

Ansible Best Practices

Following best practices ensures that your Ansible configurations are maintainable and secure.

1. Organizing Playbooks

Store playbooks wisely is a best practice for several reasons:

• Use Roles: Break down complex playbooks into roles for better organization.
• Variables: Store variables in separate files and use them across playbooks.
• Version Control: Use version control systems like Git to manage your playbooks.

2. Security Considerations

Don't forget to keep in mind the following topics before publishing or pushing some changes in production:

• Use Ansible Vault: Encrypt sensitive data using Ansible Vault.
• Limit SSH Access: Use SSH keys and limit SSH access to the control node.
• Review Modules: Regularly review and update the modules you use to ensure they are secure.

Ansible is a versatile and powerful tool for automating your workflow. From simple tasks like installing packages to complex multi-tier deployments, Ansible can handle it all. By understanding its architecture, writing effective playbooks, and using roles, you can streamline your operations and ensure consistency across your infrastructure.

As you continue to explore Ansible, remember to follow best practices and leverage advanced features like Ansible Vault and dynamic inventory to enhance your automation efforts. With Ansible, you are well on your way to creating a more efficient and reliable IT environment.

In the next blog posts we will dive through each single chapter above, don't miss them!