PuppetConf 2016: Puppet and UCS: Policy-Based Management All the Way Down – Chris Barker, Puppet &...
-
Upload
puppet -
Category
Technology
-
view
81 -
download
1
Transcript of PuppetConf 2016: Puppet and UCS: Policy-Based Management All the Way Down – Chris Barker, Puppet &...
![Page 1: PuppetConf 2016: Puppet and UCS: Policy-Based Management All the Way Down – Chris Barker, Puppet & David Soper, Cisco](https://reader031.fdocuments.in/reader031/viewer/2022030316/587495131a28abc62f8ba73d/html5/thumbnails/1.jpg)
Puppet and UCSPolicy Based Management All The Way Down
![Page 2: PuppetConf 2016: Puppet and UCS: Policy-Based Management All the Way Down – Chris Barker, Puppet & David Soper, Cisco](https://reader031.fdocuments.in/reader031/viewer/2022030316/587495131a28abc62f8ba73d/html5/thumbnails/2.jpg)
2
David Soper
Technical Marketing Engineer, Cisco
![Page 3: PuppetConf 2016: Puppet and UCS: Policy-Based Management All the Way Down – Chris Barker, Puppet & David Soper, Cisco](https://reader031.fdocuments.in/reader031/viewer/2022030316/587495131a28abc62f8ba73d/html5/thumbnails/3.jpg)
3
Chris BarkerPrinciPAL Solutions Engineer, Puppet
@mrzarquon
![Page 4: PuppetConf 2016: Puppet and UCS: Policy-Based Management All the Way Down – Chris Barker, Puppet & David Soper, Cisco](https://reader031.fdocuments.in/reader031/viewer/2022030316/587495131a28abc62f8ba73d/html5/thumbnails/4.jpg)
Agenda• razor • ucs • cvds (tying it all together)
![Page 5: PuppetConf 2016: Puppet and UCS: Policy-Based Management All the Way Down – Chris Barker, Puppet & David Soper, Cisco](https://reader031.fdocuments.in/reader031/viewer/2022030316/587495131a28abc62f8ba73d/html5/thumbnails/5.jpg)
Razor Policies: how they workPE: Quick way to get razor
5
![Page 6: PuppetConf 2016: Puppet and UCS: Policy-Based Management All the Way Down – Chris Barker, Puppet & David Soper, Cisco](https://reader031.fdocuments.in/reader031/viewer/2022030316/587495131a28abc62f8ba73d/html5/thumbnails/6.jpg)
Define
6
![Page 7: PuppetConf 2016: Puppet and UCS: Policy-Based Management All the Way Down – Chris Barker, Puppet & David Soper, Cisco](https://reader031.fdocuments.in/reader031/viewer/2022030316/587495131a28abc62f8ba73d/html5/thumbnails/7.jpg)
Boot
7
![Page 8: PuppetConf 2016: Puppet and UCS: Policy-Based Management All the Way Down – Chris Barker, Puppet & David Soper, Cisco](https://reader031.fdocuments.in/reader031/viewer/2022030316/587495131a28abc62f8ba73d/html5/thumbnails/8.jpg)
Discover
8
![Page 9: PuppetConf 2016: Puppet and UCS: Policy-Based Management All the Way Down – Chris Barker, Puppet & David Soper, Cisco](https://reader031.fdocuments.in/reader031/viewer/2022030316/587495131a28abc62f8ba73d/html5/thumbnails/9.jpg)
Puppet
9
![Page 10: PuppetConf 2016: Puppet and UCS: Policy-Based Management All the Way Down – Chris Barker, Puppet & David Soper, Cisco](https://reader031.fdocuments.in/reader031/viewer/2022030316/587495131a28abc62f8ba73d/html5/thumbnails/10.jpg)
Puppet + UCS
Abstracting Workload Deployment
● A node’s role (classification) describes its intended use - the “what”
● E.g., OpenStack Ceph Storage node
● Has shared (security, compliance) and specific (DB) profiles
10
![Page 11: PuppetConf 2016: Puppet and UCS: Policy-Based Management All the Way Down – Chris Barker, Puppet & David Soper, Cisco](https://reader031.fdocuments.in/reader031/viewer/2022030316/587495131a28abc62f8ba73d/html5/thumbnails/11.jpg)
Puppet + UCS
Abstracting Workload Deployment
● So, what infrastructure is needed for my OpenStack Ceph node?
● Use profiles to define logical representations of workloads (filesystem, authentication, etc.)
● Write it once, deploy it anywhere
● Profiles describe resources and policies to apply to those resources - a provider applies policy
11
![Page 12: PuppetConf 2016: Puppet and UCS: Policy-Based Management All the Way Down – Chris Barker, Puppet & David Soper, Cisco](https://reader031.fdocuments.in/reader031/viewer/2022030316/587495131a28abc62f8ba73d/html5/thumbnails/12.jpg)
Puppet + UCS
Abstracting Workload Deployment
● Great, what about the OS and underlying infrastructure? Where do I define that?
● Just another set of profiles and policies: Razor for OS deployment and Cisco UCS for the infrastructure
12
![Page 13: PuppetConf 2016: Puppet and UCS: Policy-Based Management All the Way Down – Chris Barker, Puppet & David Soper, Cisco](https://reader031.fdocuments.in/reader031/viewer/2022030316/587495131a28abc62f8ba73d/html5/thumbnails/13.jpg)
Cisco UCS Profiles and PoliciesThis is how I role
![Page 14: PuppetConf 2016: Puppet and UCS: Policy-Based Management All the Way Down – Chris Barker, Puppet & David Soper, Cisco](https://reader031.fdocuments.in/reader031/viewer/2022030316/587495131a28abc62f8ba73d/html5/thumbnails/14.jpg)
Puppet + UCS
You call that a profile? Now this is a profile.
● Your UCS service profile is just like your other Puppet profiles, but for the underlying infrastructure
● Logical representation of resources (compute/network/storage/etc.)
● Collection of policies to apply
● Did I mention “logical”? Profiles and policies can be changed as needed:
● Need more storage - just update your profile
● Need to change Firmware - just update a policy
14
![Page 15: PuppetConf 2016: Puppet and UCS: Policy-Based Management All the Way Down – Chris Barker, Puppet & David Soper, Cisco](https://reader031.fdocuments.in/reader031/viewer/2022030316/587495131a28abc62f8ba73d/html5/thumbnails/15.jpg)
Puppet + UCS
Cisco UCS: Define it Once and Use it Anywhere
15
![Page 16: PuppetConf 2016: Puppet and UCS: Policy-Based Management All the Way Down – Chris Barker, Puppet & David Soper, Cisco](https://reader031.fdocuments.in/reader031/viewer/2022030316/587495131a28abc62f8ba73d/html5/thumbnails/16.jpg)
Creating workflow
![Page 17: PuppetConf 2016: Puppet and UCS: Policy-Based Management All the Way Down – Chris Barker, Puppet & David Soper, Cisco](https://reader031.fdocuments.in/reader031/viewer/2022030316/587495131a28abc62f8ba73d/html5/thumbnails/17.jpg)
Puppet + UCS
Why Don’t You Just Tell Me the Name of the OS You’d Like to See?
17
![Page 18: PuppetConf 2016: Puppet and UCS: Policy-Based Management All the Way Down – Chris Barker, Puppet & David Soper, Cisco](https://reader031.fdocuments.in/reader031/viewer/2022030316/587495131a28abc62f8ba73d/html5/thumbnails/18.jpg)
Puppet + UCS
Why Don’t You Just Tell Me the Name of the OS You’d Like to See?
18
![Page 19: PuppetConf 2016: Puppet and UCS: Policy-Based Management All the Way Down – Chris Barker, Puppet & David Soper, Cisco](https://reader031.fdocuments.in/reader031/viewer/2022030316/587495131a28abc62f8ba73d/html5/thumbnails/19.jpg)
What is a CVD?Hint: Cisco Validated Design
![Page 20: PuppetConf 2016: Puppet and UCS: Policy-Based Management All the Way Down – Chris Barker, Puppet & David Soper, Cisco](https://reader031.fdocuments.in/reader031/viewer/2022030316/587495131a28abc62f8ba73d/html5/thumbnails/20.jpg)
Puppet + UCS
Focus on the Fun Stuff (Automation)
● Automation is great, but you still have steps to follow
● Back on our Ceph node, what packages (versions), ports, etc. do I need?
● Ok Google, “OpenStack 7”
● Better: Ok Google, “OpenStack 7 CVD”
● Cisco Validated Design with comprehensive deployment instructions
● Cisco put the pieces together, made sure they work, then tells you how to deploy in detail
20
![Page 21: PuppetConf 2016: Puppet and UCS: Policy-Based Management All the Way Down – Chris Barker, Puppet & David Soper, Cisco](https://reader031.fdocuments.in/reader031/viewer/2022030316/587495131a28abc62f8ba73d/html5/thumbnails/21.jpg)
Puppet + UCS
This is Great - and only 351 Pages!
● Time to Automate
● Infrastructure profiles- define once and deploy as needed
● OS profiles - name that role and provision
● Puppet - define once and deploy as needed
21
![Page 22: PuppetConf 2016: Puppet and UCS: Policy-Based Management All the Way Down – Chris Barker, Puppet & David Soper, Cisco](https://reader031.fdocuments.in/reader031/viewer/2022030316/587495131a28abc62f8ba73d/html5/thumbnails/22.jpg)
Demos
![Page 23: PuppetConf 2016: Puppet and UCS: Policy-Based Management All the Way Down – Chris Barker, Puppet & David Soper, Cisco](https://reader031.fdocuments.in/reader031/viewer/2022030316/587495131a28abc62f8ba73d/html5/thumbnails/23.jpg)
Demos
![Page 24: PuppetConf 2016: Puppet and UCS: Policy-Based Management All the Way Down – Chris Barker, Puppet & David Soper, Cisco](https://reader031.fdocuments.in/reader031/viewer/2022030316/587495131a28abc62f8ba73d/html5/thumbnails/24.jpg)
Demos
![Page 25: PuppetConf 2016: Puppet and UCS: Policy-Based Management All the Way Down – Chris Barker, Puppet & David Soper, Cisco](https://reader031.fdocuments.in/reader031/viewer/2022030316/587495131a28abc62f8ba73d/html5/thumbnails/25.jpg)
Configure (hardware) UCS Software defined hardware policy
![Page 26: PuppetConf 2016: Puppet and UCS: Policy-Based Management All the Way Down – Chris Barker, Puppet & David Soper, Cisco](https://reader031.fdocuments.in/reader031/viewer/2022030316/587495131a28abc62f8ba73d/html5/thumbnails/26.jpg)
Configure (software) Razor -> PuppetRazor ID Policy, Hands over to Puppet post OS Deploy
![Page 27: PuppetConf 2016: Puppet and UCS: Policy-Based Management All the Way Down – Chris Barker, Puppet & David Soper, Cisco](https://reader031.fdocuments.in/reader031/viewer/2022030316/587495131a28abc62f8ba73d/html5/thumbnails/27.jpg)
Puppet (Drift Remediation)Ensures desired end state
![Page 28: PuppetConf 2016: Puppet and UCS: Policy-Based Management All the Way Down – Chris Barker, Puppet & David Soper, Cisco](https://reader031.fdocuments.in/reader031/viewer/2022030316/587495131a28abc62f8ba73d/html5/thumbnails/28.jpg)
Questions?
![Page 29: PuppetConf 2016: Puppet and UCS: Policy-Based Management All the Way Down – Chris Barker, Puppet & David Soper, Cisco](https://reader031.fdocuments.in/reader031/viewer/2022030316/587495131a28abc62f8ba73d/html5/thumbnails/29.jpg)
29