This page provides information on the steps that are required to set up and configure the openIDL Ansible Jobs. Those jobs are essential to set up the openIDL node environment and deploy the different node components on the provisioned infrastructure.
The openIDL ansible playbooks can be used and executed standalone from a CLI. The preferred way though is to use AWX as it provides a powerful engine to execute ansible playbooks through a user-friendly web-based interface or automate using AWX Web APIs.
More information on AWX: https://github.com/ansible/awx
Prerequisites:
- AWS infrastructure is provisioned
- AWX is installed and operational
- Access to AWX with the default Admin user/password
Configuration is done and available at a private git repository
Credentials information is defined and available
AWS IAM user
git private repo deploy key
bastion ssh private key
HDS db access
fabric console user and password
Bastion machine (gateway) host address is available
The steps:
Step | Notes | User |
|---|---|---|
Create new Organization | Create a new organization with the org_id | admin |
Setup new AWX org user | Create a new user specific to the organization, and assign admin permissions to the created organization above. It is a good idea to use a dedicated user for every organization that is deployed through AWX. Note that AWX can be used in a multitenant mode where multiple organizations can be deployed using the same AWX. | admin |
Setup org project | Create a new project named with the org name, use openIDL ansible git URL and the appropriate branch. | org user |
Setup inventory | Create a new Inventory named with the org name (bastion-org_id). Add host using the bastion machine address Add a group named ansible_provisioners Add the bastion host to the group | org user |
Create Credentials | Create the credential types as specified below (see credentials table) | admin |
Create AWX job tempaltes | Create the AWX job templates as specified below (see AWX job templates table) | org user |