1. Ansible common¶
1.1. Introduction¶
This document aims to explain how to use the Ansible driver's common functions.
1.2. Ansible driver overview¶
This document explains the functions of Ansible Core, Ansible Automation Controller, Ansible driver and the Ansible Execution Agent.
1.2.1. Ansible Core¶
The Ansible Core is an PF construction automation tool that makes application/system deployment operations for multiple construction targets easier.
Ansible Core uses Playbook, YAML type text files, which contains routine tasks that can be run by Ansible Core.
The "Tasks" are linked to processing programs called Modules and can control different devices.
For more information regarding Ansible Core, see the official Ansible manuals.
1.2.2. Ansible Automation Controller¶
The Ansible Automation Controller is a management platform that comes with functions such as controling Ansible access, scheduling jobs and visualizing tasks.
It can be used to create job templates that contains Projects, Inventories and Authentication information that can be run with Ansible.
By combining multiple "Job templates", the user can create a "Workflow template", which can be used to express more variegated task flows.
For more information regarding Ansible Automation Controller, see the official Ansible Automation Controller manuals.
For information regarding ITA compatible Ansible Automation Controller versions, see Ansible Automation Platform.
Note that all notations regarding the newest version might not work.
1.2.3. Ansible Execution Agent¶
The Ansible Execution Agent is a Server for executing Ansible constructed seperately from ITA.
Users can construct an environment(Container) with Ansible-builder and run Playbook through an execution environment(Container) with Ansible runner.
Ansible Execution Agents must be prepared per Workspace.
By preparing multiple Ansible Execution Agents for the same Workspace, users can use a redundant architecture.
1.2.4. Ansible driver¶
The Ansible driver uses the ITA functions to automatically run Playbook processes to Servers, Storage or Network devices registered to ITA through either Ansible Core, Ansible Automation Controller or Ansible Execution Agent.
The Ansible driver comes with the following 3 modes.
They each comes with their own strengths, so make sure to use the one that suits the situation best.
- Legacy modeUses Ansible's standard functions to input settings to the host.The Legacy mode registers construction code as single YAML files and creates operation patterns using them.Often used for configuring environments for Server, Storage and Network devices.
- Legacy Role modeSimilar to the Legacy mode, this mode also uses Ansible's standard functions to input settings to the host.The Legacy Role mode registers consdtruction code as packages and creates operation patterns by combining them with Roles.Often used by using Role packages provided by product and other departments to install products and construct environments.
- Pioneer modeAdds original modules to Ansible and allows users to input settings in an interactive format.Support Server, Storage and Network devices that can be logged in with Telnet or SSH. We recommend that the user has adequate IT skills, since this mode works directly with the target host.
1.3. Handling variables with Ansible driver¶
In the Ansible driver, the specific values within the variables in the Playbook can be set from ITA.
1.3.1. Variable types¶
The variables within Playbooks that can be handled as ITA variables are the following 7 types.
Normal¶
Variable that can define 1 specific value for variable names.
e.g.) Example within Playbook
# Ansible-LegacyRole variable definition example
user: user1
# Playbook example
- name: Create user
user:
name: "{{ user }}"
Multiple specific value variables¶
Variable that can specify multiple specific values for variable names.
e.g.) Example within Playbook
# Ansible-LegacyRole variable definition example
users:
- user1
- user2
# Playbook example
- name: Create user
user:
name: "{{ item }}"
with_items: "{{ users }}"
Multistage variables¶
Variables in hierarchy.
Multiple variables can only be used in Ansible-LegacyRole.
e.g.) Example within Playbook
# Ansible-LegacyRole variable definition example
users:
- name: user3
groups: root
- name: user4
groups: root
# Playbook example
- name: Create user
user:
name: "{{ item.name }}"
with_items: "{{ users }}"
Global variables¶
Variables registered from .
e.g.) Example within Playbook
- command: echo {{ GBL_user }}
Template embedded variables¶
Variables registered from .
e.g.) Example within Playbook
- template: src={{ TPF_SAMPLE }} dest=/tmp/SAMPLE.txt
File embedded variables¶
Variables registered from .
e.g.) Example within Playbook
- copy: src={{ CPF_SAMPLE }} dest=/tmp/SAMPLE.txt
ITA original variables¶
Variables defined by ITA.
Device list¶
The following items in can be handled as variables.
Item name |
Variable name |
|---|---|
Host name |
__inventory_hostname__ |
DNS host name |
__dnshostname__ |
IP address |
__ipaddress__ |
Protocol |
__loginprotocol__ |
Login user ID |
__loginuser__ |
Login password |
__loginpassword__ |
Tip
The "__" before and after the variable names are created by 2 underscores.
The will display an error.
Movement ID¶
The 's :menuselection:`Movement ID`can be selected as variables
Item name |
Variable name |
|---|---|
Movement ID |
__movement_id__ |
Operation¶
The operations that are selected during execution can be selected as variables.
Item name |
Variable name |
|---|---|
Operation |
__operation__ |
Setting value: "YYYY/MM/DD HH:MM" _ "Operation ID" : "Operation name"
YYYY/MM/DD HH:MM: 's
Operation ID: 's
Operation name: 's
Operation instance ID¶
The 's generated when executed can be selected as variables.
Item name |
Variable name |
|---|---|
Operation instance ID |
__execution_no__ |
Conductor instance ID¶
The 's can be handled as variables when run.
For more information regarding the Conductor function, see "Conductor
Item name |
Variable name |
|---|---|
Conductor instance ID |
__conductor_id__ |
__conductor_id__ can be handled as a variable when executing Conductor.
If is used, the operation will end in an error.
Link data¶
When executing operations, the operation directory path can be used as the following variables.
Item name |
Variable name |
|---|---|
Operation directory path |
__workflowdir__ |
By creating a file in the Operation directory within the Playbook, the user can download the file from in
When running Conductors, the Movement's shared directory path can be used as the following variables.
Item name |
Variable name |
|---|---|
Conductor operation directory path |
__conductor_workflowdir__ |
By creating a file in the Conductor operation directory path within the Playbook, the file can be shared between the Conductor's Movements.
If the operation is executed from , the same path as __workflowdir__ will be set.
The file path for the status file referenced with 's can be used as the following variables.
For more information regarding , see "Conductor".
Item name |
Variable name |
|---|---|
Status file path |
__movement_status_filepath__ |
The file paths used by the collect function can be used as the following variables.
For more informatio nregarding the collect function, see "Collect function".
Item name |
Variable name |
|---|---|
Path for operation directory (in) 's "_parameters" |
__parameters_dir_for_epc__ |
Path for operation directory (in) 's "_parameters_file" |
__parameters_file_dir_for_epc__ |
Path for operation directory (out) 's "_parameters" |
__parameter_dir__ |
Path for operation directory (out) 's "_parameters_file" |
__parameters_file_dir__ |
"_parameters":Source file (parameter) for storage destination
"_parameters_file":For storage destination for collected files
※File arrangement when parameter target is file upload collumn
1.3.2. Extracting variables and registering specific variables¶
Variable extraction files¶
If the variable extraction target is a registered file, the variables can be extracted from the registered information.
Tip
〇:Extraction target ×:Not extraction target
Playbook file extractable variable types and their format¶
The following table displays what variable types can be extracted from the 's and their format.
Tip
Notes regarding variable names
△:Half-width space
vvv: Half-width characters and underscore within 255 bytes ( _ )
xxx: Half-width characters and underscore within 251 bytes ( _ )
Interactive file extractable variable types and their format¶
The following table displays what variable types can be extracted from the 's .
Tip
Notes regarding variable names
△:Half-width space
vvv: Half-width characters and underscore within 255 bytes ( _ )
xxx: Half-width characters and underscore within 251 bytes ( _ )
Local package file (ZIP format) extractable variable types and their format.¶
Tip
〇:Variable definition extraction target ×:Not variable definition extraction target
Tip
Notes regarding variable names
△:Half-width space
vvv: Half-width characters and underscore within 255 bytes ( _ )
xxx: Half-width characters and underscore within 251 bytes ( _ )
Member variables can use all ascii characters (0x20~0x7e) except for the 7 characters written below.
" . [ ] ' \ :
Note that some characters can not be used at the start of the variable's names unless they are in quoatation marks.
For more information, see the official Ansible manuals' YAML and Syntax section.
Inventory file options and header section parameter value extractable variable types and their format.¶
The following table displays what variables can be extraccted with the Parameter values found in 's and 's
Tip
Notes regarding variable names
△:Half-width space
vvv: Half-width characters and underscore within 255 bytes ( _ )
Specific values for variables¶
Ansible-Legacy¶
The specific values of the extracted variables are set by setting specific values to the items on the parameter sheet and tying them to each variable in .
They are output to the host variable file when the operation is executed.
The following diagram illustrates the specific value's relationships through in the host's variable file's variables from when the operation is executed to when they are output.
For more information regarding Parameter sheets, see ""Parameter sheet creation function".
図 1.60 Variable's specific values in Ansible-Legacy host variable files¶
① Variables are extracted from one of the variable extractable files in "Variable extraction files" which makes them selectable in .
② Register specific values for the variable linked to the parameter sheet item.
③ Register a link between the parameter sheet item and the variable in .
④ Executing the operation displays the parameter sheet item and variable information linked in to and outputs it to the host variable file.
Ansible-Pioneer¶
The specific values of the extracted variables are set by setting specific values to the items on the parameter sheet and tying them to each variable in .
They are output to the host variable file when the operation is executed.
The following diagram illustrates the specific value's relationships through in the host's variable file's variables from when the operation is executed to when they are output.
図 1.61 Variable's specific values in Ansible-Pioneer host variable files¶
① Variables are extracted from one of the variable extractable files in "Variable extraction files" which makes them selectable in .
② Register specific values for the variable linked to the parameter sheet item.
③ Register a link between the parameter sheet item and the variable in .
④ Executing the operation displays the parameter sheet item and variable information linked in to and outputs it to the host variable file.
Ansible-LegacyRole¶
The specific values of the extracted variables are set by setting specific values to the items on the parameter sheet and tying them to each variable in .
They are output to the host variable file when the operation is executed.
The following diagram illustrates the specific value's relationships through in the host's variable file's variables from when the operation is executed to when they are output.
図 1.62 Variable's specific values in Ansible-LegacyRole host variable files¶
① Variables are extracted from one of the variable extractable files in "Variable extraction files" which makes them selectable in .
② Register specific values for the variable linked to the parameter sheet item.
③ Register a link between the parameter sheet item and the variable in .
④ Executing the operation displays the parameter sheet item and variable information linked in to and outputs it to the host variable file.
The specific values for the variables registered in are output to the Host variable definition file, (host_vars) .
The order in which specific values are handled are as follows.
- Host variable definition file value
- values defined in defaults variable definition file
1.5. Menu operation¶
This section explains how to operate the Ansible common menus.
1.5.1. Device list¶
- This menu allows users to maintain (view/register/update/delete) device information.Installing ITA registers the local device as "localhost" to the device list.The user can select "localhost" as the execution target and the operation be executed within the ansible host.Note that the Ansible-Pioneer mode can not use "localhost".
図 1.63 Submenu page (Device list)¶
- Press the Register button to register the operation target device's information.
図 1.64 Registration page (Device list)¶
- The items found in the registration page are as following.
Tip
※1 Select from data fetched with Ansible Automation Controller data synchronization.
1.5.2. Interface information¶
- Select the Ansible Core, Ansible Automation Controller or Ansible Execution Agent to be the execution engine and maintain (view/edit) connection interface information for connecting to the execution engine's server.
図 1.65 Submenu (Interface information)¶
- Press the Edit button to edit Interface information.
図 1.66 Registration page (Interface information)¶
- The items found in the Registration page are as following.
Tip
※1 Select from data fetched with " Ansible Automation Controller data synchronization ".
1.5.3. Ansible Automation Controller host list¶
- In the users can maintain (view/register/edit/discard) information required to execute RestAPI to the Ansible Automation Controller and information required to transfer files to Ansible Automation Controller.If it is in a cluster configuration, regsiter all hosts.The user does not need to register Ansible Automation Controller's hop node.
図 1.67 Submenu (Ansible Automation Controller Host list)¶
- Press the Register button to register Ansible Automation Controller host information.
図 1.68 Registration page (Ansible Automation Controller Host list)¶
- The items found in the Registration page are as following.
1.5.4. Global variable management¶
- Maintains (view/register/edit/discard) global variable names used by Playbooks and interactive files.
図 1.69 Submenu (Global variable management)¶
- Press the Register button to register Global variables.
図 1.70 Registration page (Global variable management)¶
- The items found in the Registration page are as following.
1.5.5. File management¶
- Maintains (view/register/edit/discard) File materials and file embedded variables used by Playbook and Interactive files.By uploading file materials, users can specify what file material to use within the playbook by specifying file embedded variable names.
図 1.71 Submenu (File management)¶
- Press the Register button to register file embedded variables.
図 1.72 Registration page (File management)¶
- The items found in the Registration page are as following.
Tip
Ansible-Legacy・Ansible-LegacyRole file embedded variable example
This section contains examples of File embedded file names when describing File materials registered in to Playbooks.
※If the file name has a space in it, make sure to enclose it in quotation marks. Not doing so will end in an error.
Example)
- Using the file embedded variables to copy the hosts file registered in to the target server's /etc/
- Register hosts file from .
表 1.102 File management registration contents¶ File embedded variable name
File material
CPF_hosts
hosts
- Describe a Playbook similar to the one below.※Input file name for dest. If there is no file name, The Files with ITA Management numbers applied to their names will be processed before the registered file material's file name.For example, for dest=/etc/, the file name will be /etc/"String with 36 characters"_hosts.Writing Playbooks
- copy: src='{{ CPF_hosts }}' dest=/etc/hosts
- Unzipping the tool.tgz file registered in under the Target server's /usr/local/bin/ path using the file's file embedded variables.
- Register tool.tgz file from .
表 1.103 File management registration contents¶ File embedded variable name
File collection
CPF_tool_tgz
tool.tgz
- Describe a Playbook similar to the one below.Writing Playbooks
- unarchive: src={{ CPF_tool_tgz }} dest=/usr/local/bin
Tip
Ansible-Pioneer file embedded variable example
This section contains examples of File embedded file names when describing File materials registered in to Playbooks.
※If the file name has a space in it, make sure to enclose it in quotation marks. Not doing so will end in an error.
e.g.)
- Using the file embedded variables to copy the hosts file registered in to the target server's /etc/
- Register hosts file from .
表 1.104 File management registration contents¶ File embedded variable names
File collection
CPF_hosts
hosts
- The following is an example of writing an interactive file.※Make sure to describe the file name for the destination as well. If there is no file name, The Files with ITA Management numbers applied to their names will be processed before the registered file material's file name.For example: For /etc/, the file name will be /etc/"String with 36 characters"_hosts.Writing Interactive files
conf: # Adjust timeout value according to the file size timeout: 60 exec_list: # Authenticate login password for the target device. - expect: 'password:' exec: '{{ __loginpassword__ }}' # Transfer target to file deployed on the AAC side through scp command. - expect: '{{ __loginuser__ }}@{{ __dnshostname__ }}' exec: 'scp -o StrictHostKeyChecking=no -o UserKnownHostsFile=/dev/null {{ VAR_scp_user }}@{{ VAR_aac_host }}:{{ CPF_hosts }} /etc/hosts' # Password login authentication for scp command (AAC side) - expect: 'password:' exec: '{{ VAR_scp_user_password }}' # end of interactive file - expect: '{{ __loginuser__ }}@{{ __dnshostname__ }}' exec: exit
表 1.105 Variable specific values¶ Variable
Specific value
VAR_scp_user
awx
VAR_scp_user_password
awx user password
VAR_aac_host
Ansible Automation Controller
Tip
Registering large files
An error saying "Authentication failed" might occur when sending large files.
This error might be caused of the following reasons, which delays the file registration authentication process, causing the token to run out.
・Network speed/status
・Security checks and filtering
To solve this, see Changing the validity period of access tokens and change the token lifespan.
1.5.6. Template management¶
- Maintains (view/register/edit/discard) Template materials and Template embedded variables used by Playbook and Interactive files.By uploading template file materials, , users can specify what template file materials to use within the playbook by specifying template embedded variable names.
図 1.73 Submenu (Template management)¶
- Press the Register button to register template embedded variables.
図 1.74 Registration page (Template management)¶
- The items found in the Registration page are as following.
警告
When variables defined within the templates are extracted
The variables defined within the template files are extracted by internal processes.
The variables can have specific values registered to them in .
The variables are not extracted in realtime, meaning that it may take time before they can be used in .
Tip
※1 Warnings regarding Variable definition
The variables used within template files must be defined in .
There are a total of 5 different types of variables that can be used within template files. see below for more information.
If there are multiple variables with the same name defined, the variable structure must match. If the variable structure does not match, the registration will end in an error.
Tip
Variable name supplementary information
vvv: Must be within 255 bytes and can contain half-width alphanumeric characters and underscores (_).
xxx: Must be within 251 bytes half-width alphanumeric characters and underscores (_).
Member variables can use all ascii characters (0x20~0x7e) except for the following 7 characters.
" . [ ] ' \ :
Note that some characters cannot be used at the start of the variable name unless they are enclosed by quotation marks.
For more inforamtion, see the official Ansible documents.
注釈
Ansible-Legacy・Ansible-LegacyRoleでのテンプレート埋込変数の使用例
で登録したテンプレート素材をPlaybookに記述する場合、テンプレート埋込変数名を記述します。
※ファイル名にスペースなどが含まれている場合、適切にクォーテーションで囲まないと、作業実行時にエラーになる場合があります。
e.g.) で登録したhostsファイルをテンプレート埋込変数を使用して作業対象サーバの/etc/配下に設置する場合
- からhostsファイルを登録します。
表 1.106 テンプレート管理の登録内容¶ テンプレート埋込変数名
テンプレート素材
TPF_hosts
hosts
- 下記のようにPlaybookを記述します。※destはファイル名も記述してください。ファイル名の指定がない場合、登録したテンプレート素材のファイル名の前にITAの管理番号が付与された名前のファイル名で処理されます。たとえば、dest=/etc/ とした場合、ファイル名は/etc/36桁の文字列_hostsとなります。Playbookの記述
- template: src='{{ TPF_hosts }}' dest=/etc/hosts
注釈
Ansible-Pioneerでのテンプレート埋込変数の使用例
で登録したテンプレート素材を対話ファイルに記述する場合、テンプレート埋込変数名を記述します。
※ファイル名にスペースなどが含まれている場合、適切にクォーテーションで囲まないと、作業実行時にエラーになる場合があります。
e.g.) で登録したhostsファイルをテンプレート埋込変数を使用して作業対象サーバの/etc/配下に設置する場合
- からhostsファイルを登録します。
表 1.107 テンプレート管理の登録内容¶ テンプレート埋込変数名
テンプレート素材
TPF_hosts
hosts
- 下記のように対話ファイルを記述します。※転送先はファイル名も記述してください。ファイル名の指定がない場合、登録したテンプレート素材のファイル名の前にITAの管理番号が付与された名前のファイル名で処理されます。たとえば、/etc/. とした場合、ファイル名は/etc/36桁の文字列_hostsとなります。対話ファイルの記述
conf: # ファイルのサイズでタイマ値調整 timeout: 60 exec_list: # 対象機器へのログインパスワード認証 - expect: 'password:' exec: '{{ __loginpassword__ }}' # 作業対象側よりscpコマンドでAAC側に配置されているファイルを作業対象にファイル転送 - expect: '{{ __loginuser__ }}@{{ __dnshostname__ }}' exec: 'scp -o StrictHostKeyChecking=no -o UserKnownHostsFile=/dev/null {{ VAR_scp_user }}@{{ VAR_aac_host }}:{{ TPF_hosts }} /etc/hosts' # scpコマンドのパスワードログイン認証(AAC側) - expect: 'password:' exec: '{{ VAR_scp_user_password }}' # 対話ファイル終了 - expect: '{{ __loginuser__ }}@{{ __dnshostname__ }}' exec: exit
表 1.108 変数の具体値¶ 変数
具体値
VAR_scp_user
awx
VAR_scp_user_password
awxユーザパスワード
VAR_aac_host
Ansible Automation Controller
1.5.7. Execution environment definition template management¶
- This menu allows users to manage the template files for execution environment definition files (execution-environment.yml) that are used when building the execution environment (container) with the ansible-builder within the Ansible Execution Agent.For more information regarding the template file, see Using the Template file registered to Ansible common ▶ Execution environment definition template ` and :menuselection:"Execution Environment Parameter Definition" Parameter sheet`.When installing ITA, a template file that lets the user add python module and ansible galaxy collection is registered.
図 1.75 Submenu page (Execution environment definition template management)¶
- Press the Register button and register an execution environment definition template.
図 1.76 Registration page. (Execution environment definition template management)¶
- The items found in the registration page are as following.
1.5.8. Execution environment management¶
- This menu allows people to manage links between the template file for the execution environment definition file (execution-environment.yml) registered in the menu and the .For more information regarding the:menuselection:"Execution environment definition template" parameter sheet, see Using the Template file registered to Ansible common ▶ Execution environment definition template ` and :menuselection:"Execution Environment Parameter Definition" Parameter sheet`.
図 1.77 Submenu page (Execution environment management)¶
- Press the Register button to register an Execution environment definition template.
図 1.78 Registration page (Execution environment management)¶
- The items found in the registration page are as following.
1.5.9. Agent management¶
- This menu allows users to view the Agent name and Version information of the Ansible Execution Agents connected to ITA.
図 1.79 Submenu page (Agent management)¶
- The items found in the page are as following.
表 1.109 View page item list (Agent management)¶ Item
Description
Restrictions
Item No.
The item number is automatically assigned to the item when registerd and consists of 36 characters.
ー
Agent name
Displays the Ansible Execution Agent name.
ー
Version
Displays the Ansible Execution Agent version.
ー
Status
The following statuses can be displayed.
- Valid (Latest)Displayed when the Ansible Execution Agent and ITA Version matches and the system has successfuly linked with the Ansible Execution Agent.
- Valid (Update available)Displayed when the Ansible Execution Agent and ITA Version does not match, but can and has been linked with each other.We recommend that the user updates the Ansible Execution Agent.
- Can't link (Update required)Displayed when the Ansible Execution Agent and ITA Version does not match and has no compatibility with each other. Update the Ansible Execution Agent and try again.
ー
Remarks
Free description field.
Free description field.
1.5.10. Unmanaged target variable list¶
- Maintains (view/register/edit/discard) variables extracted from "Variable extraction files" the user dont want to display to 'sAnsible magic variables are registered when ITA is installed.
図 1.80 Submenu (Unmanaged target variable list)¶
- Press the Register button to register umnamaged variables.
図 1.81 Registration page (Unmanaged target variable list)¶
- The items found in the Registration page are as following.
1.6. Appendix¶
1.6.1. Using the Template file registered to "Execution Environment Parameter Definition" Parameter sheet`¶
ITAをインストールすると、 と にpythonモジュールやansible galaxyコレクションが追加できるテンプレートファイルとパラメータ値が登録されます。
- に登録するテンプレートファイルの仕様ファイルの形式は「Jinjer2型式」です。ファイルの書式は、ansible-biulderで使用する定義ファイル「execution-environment.yml」に準じます。詳細は、ansible-biulderのマニュアルを参照して下さい。
- ITAインストール時に登録される の項目一覧は以下のとおりです。
表 1.110 パラメータシート「実行環境パラメータ定義」¶ 項目
説明
入力必須
入力方法
制約事項
execution_environment_name
レコードの名称を入力します。
〇
手動入力
最大長255バイト
python_requirements_file
実行環境(コンテナ)にpipコマンドで追加インストールをしたいPythonパッケージを列挙したファイルを入力します。
〇
ファイル選択
最大サイズ 100Mバイト 尚、空ファイルを入力しないで下さい。ansible-builder実行時にエラーになります。
galaxy_requirements_file
実行環境(コンテナ)にansible-galaxyで追加インストールをしたいコレクションを列挙したファイルを入力します。
-
ファイル選択
最大サイズ 100Mバイト 尚、空ファイルを入力しないで下さい。ansible-builder実行時にエラーになります。
bindep_file
実行環境(コンテナ)にdnfコマンドで追加インストールをしたいLinuxモジュールを列挙したファイルを入力します。
〇
ファイル選択
最大サイズ 100Mバイト 尚、空ファイルを入力しないで下さい。ansible-builder実行時にエラーになります。
ansible_runner
「ansible_runner」を入力します。
〇
手動入力
最大長255バイト
image
実行環境(コンテナ)のベースイメージを入力します。 ITA Ver2.5.1では、以下の2個のベースイメージについて動作確認がとれています。
- Redhat有償版のベースイメージの場合registry.redhat.io/ansible-automation-platform-24/ee-supported-rhel9:latest
- Redhat無償版のベースイメージの場合registry.access.redhat.com/ubi9/ubi-init:latest
〇
手動入力
最大長255バイト
package_manager_path
パッケージ管理コマンドのパスを入力します。
- Redhat有償版のベースイメージの場合/usr/bin/microdnf
- Redhat無償版のベースイメージの場合/usr/bin/dnf
〇
手動入力
最大長255バイト
- を新規作成したり更新する場合の注意事項を新規作成したり更新する場合の注意事項について以下に列挙します。
- パラメータシート名(rest)は、先頭が「execution_environment_parameter_definition_sheet」で始まる名称にして下さい。
- 作成対象は、データシートを選択して下さい。
- パラメータシートの項目に以下の項目を含んで下さい。
項目
説明
Rest API用項目名
execution_environment_name
入力値
レコード名
項目タイプ
文字列(単一行)
最大バイト数
255
- パラメータシート名を入力します。
Tip
の に表示される情報について補足には下記情報が表示されます。④パラメータシート名/③レコード名「Rest API用項目名:execution_environment_name」 - に登録したテンプレートファイル内の変数と同名の項目を容易して下さい。パラメータシートの項目名を変数名、設定値を変数値として、テンプレートファイルに埋め込みます。
実行環境定義テンプレート管理で使用するテンプレートファイルと実行環境パラメータ定義で使用するパラメータシートの関連図
1.6.2. BackYard contents¶
Ansible Automation Controller data synchronization¶
Fetches resources registered to Ansible Automation Controller if the in is set to "Ansible Automation Controller".
Resource |
Application |
|---|---|
Organization name |
Used with the list selection in .
Organizations can be seen by users who input the 's .
|
Instance group |
Used with the list selection in .
Instance groups can be seen by organizations selected in 's .
|
Execution environment |
Used with the list selection in .
Execution envrionments can be seen by organizations selected in 's .
|
1.6.3. Inventory files created by ITA.¶
This section explains inventory files created by ITA.
The inventory files created by ITA are as following.
all:
children:
hostgroups:
hosts:
Inventory_host:
Inventory_host_parameters:
Inventory_host_option_parameters:
Inventory_host has 's configured to it.
Inventory_host_option_parameters has 's configured to it.
The parameters configured to Inventory_host_parameters are as following.
If the setting value items have empty parameters, they will not be configured to Inventory_host_parameters
Parameter name |
's |
Certificate authentic| action |
|
|||||
|---|---|---|---|---|---|---|---|
Password authentication |
Key authentication
|
Key authentication
|
Key authentication
|
Password authentication Authentication (winrm) |
|||
ansible_host |
〇 |
〇 |
〇 |
〇 |
〇 |
|
|
ansible_user |
〇 |
〇 |
〇 |
〇 |
〇 |
's :menuselection:` login user`
|
|
ansible_password |
〇 |
〇 |
's
|
||||
ansible_ssh_private_key_file |
〇 |
〇 |
's
|
||||
ansible_ssh_extra_args |
〇 |
〇 |
〇 |
〇 |
's
|
||
ansible_connection: |
〇 |
〇 | winrm |
|||||
ansible_port |
〇 |
〇 | 's |
|||||
ansible_winrm_ca_trust_path |
〇 |
〇 | 's |
|||||
ansible_winrm_cert_key_pem |
〇 |
〇 | 's ' |
|||||
Tip
〇: Setting target
1.6.4. Option parameter list¶
と の について説明します。
ITAでは、以下の優先順位でオプションパラメータを設定します。単一の値しか許容していないパラメータを複数定義した場合、 の が有効になります。
- の
- の
▼ の が「Ansible Core」と「Ansible Execution Agent」の場合
ansible-playbookコマンドのオプションパラメータを入力します。
ansible-playbookコマンドのオプションパラメータの仕様については、以下のコマンドを実行して表示されたヘルプを参照してください。
ansible-playbook -h
▼ の が「Ansible Automation Controller」の場合に
入力可能なオプションパラメータは以下のとおりです。
オプションパラメータ |
指定方法 |
Ansible Automation Controllerの設定箇所 |
備考 |
|---|---|---|---|
-v
--verbose
|
-v
-vv
-vvv
-vvvv
-vvvvv
--verbose
|
の に v の数が設定される。 |
・vの合計値を適用
・--verboseは、-vと同様
例:--verbose -vvv の場合、-vvvvと同様
・vを6以上指定した場合 、vは5の指定となる
|
-f
--forks
|
-f FORKS
--forks=FORKS
|
の にFORKSの値が設定される。 |
・FORKSには数値を指定
・複数定義した場合、最後に定義したパラメータが有効
例:-f 1-forks=10の場合、--forks=10が有効となる
・数値以外が指定された場合、エラーとなる
|
-l
--limit
|
-l SUBSET
--limit=SUBSET
|
の にSUBMITの値が設定される。 |
・SUBSET:機器一覧にあるホスト名
・複数定義した場合、最後に定義したパラメータが有効
|
-e
--extra-vars
|
-e EXTRA_VARS
--extra-vars=EXTRA_VARS
|
の にEXTRA_VARSの値が設定される。 |
・EXTRA_VARS:変数名、具体値をjson形式またはyaml形式
e.g.) json形式の場合
-extra-vars={"VAR_1":"directory"}
e.g.) yaml形式の場合
-extra-vars=VAR_1:directory
・複数定義した場合、最後に定義したパラメータが有効
|
-t
--tags
|
-t TAGS
--tags=TAGS
|
の にTAGSの値が設定される。 |
・TAGS:タグ名
・複数個のパラメータを許容
|
-b
--become
|
-b
--become
|
の がチェックされる。 |
・少なくとも1つ指定すればパラメータが有効 |
-D
--diff
|
-D
--diff
|
の の表示が有効化される。 |
・少なくとも1つ指定すればパラメータが有効 |
--skip-tags |
--skip-tags=SKIP_TAGS |
の にSKIP_TAGSの値が設定される。 |
・SKIP_TAGS:スキップタグ名
・複数個のパラメータを許容
|
--start-at-task |
--start-at-task=START_AT_TASK |
※Ansible Automation ControllerのWebUI には--start-at-taskの表示はありません。
ansible-playbookコマンドの--start-at-taskと同様の扱いになります。
|
・複数定義した場合、最後に定義したパラメータが有効 |
-ufc
--use _fact_cache
|
-ufc
--use_fact_cache
|
の がチェックされる。 |
・少なくとも1つ指定すればパラメータが有効 |
-as
--allow_simultaneous
|
-as
--allow_simultaneous
|
の がチェックされる。 |
・少なくとも1つ指定すればパラメータが有効 |
-jsc
--jobslice_count
|
-jsc ジョブスライス数
--job_slice_count=ジョブスライス数
|
の にジョブスライス数の値が設定される。 |
・ジョブスライス数には数値を指定
・複数定義した場合、最後に定義したパラメータが有効
|
※Ansible Automation Controllerのオプションパラメータの仕様については、Ansible Automation Controller公式マニュアルのユーザガイドのジョブテンプレートを参照してください。
1.6.5. Data resources deleted when executed¶
の で「true」を選択した場合に、削除されるデータリソースは以下のとおりです。
の が「Ansible Automation Controller」の場合¶
データリソース |
リソースタイプ |
備考 |
|---|---|---|
ITA作業用ディレクトリ /var/lib/exastro/ita_<区分>_executions_作業番号 |
ディレクトリ |
|
SCM管理ディレクトリ /var/lib/awx/projects/ita_<区分>_executions_作業番号 |
ディレクトリ |
※プロジェクトリソースの削除により削除される |
インベントリ リソース名: ita_<区分>_executions_inventory_作業番号_通番 |
リソース |
|
認証情報 リソース名: ita_<区分>_executions_credential_作業番号_通番 ita_<区分>_executions_vault_credential_作業番号 ita_<区分>_executions_git_credential_作業番号 |
リソース |
|
プロジェクト リソース名: ita_<区分>_executions_project_作業番号 |
リソース |
|
ジョブテンプレート リソース名: ita_<区分>_executions_jobtpl_作業番号_通番 |
リソース |
|
ワークフロージョブテンプレート リソース名: ita_<区分>_executions_workflowtpl_作業番号 |
リソース |
|
ジョブ リソース名: Job番号—ita_<区分>_executions_workflowtpl_作業番号 Job番号—ita_<区分>_executions_jobtpl_作業番号 |
リソース |
注釈
<区分>: 作業実行したモード
legacy: legacy
legacy role: legacy_role
pioneer: pioneer
データリソース |
リソースタイプ |
備考 |
|---|---|---|
Git リポジトリ /tmp/git_repositories/<区分>_作業番号 |
Gitリポジトリ |
ディレクトリごと削除 ※ の 設定値に関係なく削除される。 |
の が「Ansible Execution Agent」の場合¶
データリソース |
リソースタイプ |
備考 |
|---|---|---|
ITA作業用ディレクトリ <storage>/<org>/<ws>/driver/ag_ansible_execution/<区分>/作業番号 <storage>/<org>/<ws>/ag_ansible_execution/status |
ディレクトリ |
注釈
<storage>: Ansible Execution Agentインストール時にSpecify full path for the data storage locationで設定したバス
<org>:Ansible Execution Agentインストール時にInput ORGANIZATION_ID.で設定したORGANIZATION ID
<ws>:Ansible Execution Agentインストール時にInput WORKSPACE_ID.で設定したWORKSPACE ID