2296 Consolidating automation with Red Hat Ansible.pdf

《2296 Consolidating automation with Red Hat Ansible.pdf》由會員分享，可在線閱讀，更多相關《2296 Consolidating automation with Red Hat Ansible.pdf（53頁珍藏版）》請在三個皮匠報告上搜索。

1、October 21-24,2024Mandalay Bay Convention CenterLas Vegas,NevadaSession#2296Nathan YeltonEnsono,Lead Ansible&Integration.DMTSNelson D.HsuRed Hat Product Marketing Director&IBM LeaderAnsible Business Unit Consolidating automation with Red Hat Ansible Automation Platform on Red Hat OpenShift2Who is En

2、sono?Setting the sceneWhat is Community Ansible?What is Enterprise Automation?The Ensono Challenge scale,efficiencies and resilienceThe Ensono Solution the migration,mainframe,EDA and GenAILessons LearnedThe next hour3About Us4Private and confidentialEnsonos evolution at the pace of technologyAzure

3、Public Cloud competency Enters cloud servicesIndustry contextSurge in cloud adoption.Multi-cloud strategies gain popularity.Data consumption and demand for cloud services increase.Cloud-native applications become essential for agility.Emphasis on application modernization for digital transformation.

4、Enterprises seek agility and leverage AI,demanding modern,cloud-connected services.202220212018201720162023Adds Microsoft cloud capabilities Expands data center and cloud services footprint Strengthens cloud-native consulting Enhances application modernization capabilities.Modern,Cloud-Connected Mai

5、nframe.Ensono 1,002$224M1,151$285M2,100$445M2,700$738M3,000$783MAssociatesRevenueEnsono acquired by3,400$871MPrivileged and confidential5Your ally for better outcomes11+yrsAverage client tenure1.3M+MIPS(Second largest provider in US)200+Clients$1B2024 expected revenueExpertiseWhy clients choose us:C

6、ultureFlexibility6Private and confidentialEnsono global footprintOmaha,NE(2)Delivery and Data CenterKings Mountain,NCData CenterElk Grove Village,ILData CenterConway,ARDelivery and Data CenterFarnborough,UKData CenterHeathrow,UKData CenterCardiff,UKDelivery CenterLondon,UKDelivery CenterMeerbusch,DE

7、Delivery and Data CenterDusseldorf,DEData CenterGdansk,PLDelivery CenterSingapore#1Data CenterPune,INDelivery CenterChennai,INDelivery CenterBangalore,INDelivery CenterRichmond,VAData CenterSomerset,NJData CenterDowners Grove,ILDelivery and Data CenterFranklin Park,ILData CenterDallas,TX(2)Data Cent

8、erPrivileged and confidential7Ensono Ansible&Integration TeamNathan Yelton(UK)Jeff Donovan(US)Matt Webb(UK)Jude Smith(UK)Rajesh Khake(IN)Gavin Coates(UK)Dave Strachan(UK)Red Hat Consulting Team(US&UK)8The Setting the Scene9What is Community AnsibleAn open-source IT automation tool that simplifies th

9、e management of systems,software deployment,and orchestration of complex workflows.Key featuresAutomationAgentlessHuman-readable languageIdempotentExtensibleAWX components now split out:awx-operatorcredential plugins,auth plugins,UI 20+discrete community upstream projects:UnsupportedSingle,supported

10、 product ansible-builderAutomation Hubansible-galaxyGalaxy NGGalaxy NG OperatorHub UIansible-navigatorAnsible RunnerAnsible ReceptorContent Collections,ansible-signAnsible Core,pylibSSHBundled Installer or operatorsRed Hat Insights,Red Hat Ansible Automation Analyticsansible-testansible-lintansible-

11、language-servervscode-Ansible Automation Platform 2.x:Integrated and fully supportedManageCreate Scale&AdoptThese tools used alone are not sufficient for enterpriseautomation!Singular workloadsFree,unsupported open source command line tool for automation.Small teams,sandboxesFree,unsupported open so

12、urce software.A GUI and API tool for wrapping around community Ansible.Enterprise automationSubscription enterprise product.Combines 20+upstream projects in a fully supported automation platform for enterprise.Works best for automating solitary workloads or to run automation for home labs.Fast-paced

13、 development environment not intended for production use cases due to its unstable nature.Perfect for contributing to upstream code bases and learning automation before scaling it.A unified solution for strategic automation combining the security,features,integrations,and flexibility needed to scale

14、 automation across domains,orchestrate essential workflows,and optimize IT operations to successfully adopt enterprise AI.Ansible is the de-facto automation languageTerminology may be similar but command-line Ansible,AWX&AAP are differentWhat is Red Hat Ansible Automation Platform?12A distributed ar

15、chitecture built for scale.ControlplaneExecutionplaneAutomation controllerAutomation MeshIntegrationOrchestrationUser managementSelf-serviceCredential managementAuditing and loggingData centerCloudEdgeExecution environmentsExecution environmentsExecution environmentsNetworkRoutersIPAMSwitchesLBsPriv

16、ate cloudInfrastructureCloud nativeSecurityPublic cloudITSMEdgePAMIDPSSIEMFirewallsThe reality of hybrid infrastructure:Why automate?Its Day 2Skills,Complexity,Staffing challenges Red Hat Ansible Automation Platform gives you options 1470+CertifiedTechnology partners 150+CertifiedContent Collections

17、 100+Systems integrators+Resellers55,000GitHub stars1000+Active open source contributors Red Hat customers use AAP to build a scalable foundation for automation innovationAICloud Native/Public CloudPrivate CloudRed Hat PortfolioITSM/ObservabilityInfrastructureNetworking/EdgeSecurityCreateManageScale

18、Unifying teams is the key to unlocking strategic automation Empower Foster a more free-flowing exchange of ideas,subject matter expertise,and perspectives Enable platform admins and IT ops teams to manage automated workloads at scale with more efficiency,consistency and flexibility.Make it possible

19、for IT leaders to truly empower the individuals and teams leading automation efforts More efficiency Generative AI to lower barriers to entry(Ansible Lightspeed)Unified UI for true platform experience Enhanced developer tooling More consistency Out of the box integrations across domainsNetworkInfras

20、tructureSecurityEdgeApplications Ansible on Clouds;flexibility across environments“Policy as Code”(GRC)More reliability Event-Driven Ansible for observability+response Trusted automation supply chain Consulting,services,and support for sustainable automation practicesWe have the platform for mission

21、 critical automation 17The ChallengePrivileged and confidential18US DatacentresAnsible Scale AWX in the core of Ensono Network Circa18,000 Hosts Connected 300+Projects 400+Job Templates AWX Running on K8S Backing Database on Clustered PostgreSQL on CentOSv19.1BastionClientsPrivileged and confidentia

22、l19US DatacentresAnsible Scale 2nd Deployment AWX Build in the same standards Drifted Configuration Additional 3500k Hosts 95%Job template/Project alignmentClientsUK DatacentresClientsBastionv19.1Bastionv19.1Privileged and confidential20US DatacentresAnsible Scale 3 other Large deployments Network C

23、omplexity More Config Drift Another 9000k HostsClientsUK DatacentresClientsBastionv19.1Bastionv19.1Legacy US1 DatacentresClientsLegacy US2 DatacentresClientsLegacy UK DatacentresClientsIsolated Nodesv17.1v17.1Isolated Nodesv17.1Privileged and confidential21US DatacentresAnsible Challenges 5 API endp

24、oints for upstream integrations 5x Patching workloads 5x Infra costs Troubleshooting challengesClientsUK DatacentresClientsBastionv19.1Bastionv19.1Legacy US1 DatacentresClientsLegacy US2DatacentresClientsLegacy UK DatacentresClientsIsolated Nodesv17.1v17.1Isolated Nodesv17.1Ensono ApplicationsEnvisi

25、on22Where the Platform is Used Open Systems Automation Builds Patching Incident Resolution Application Deployment Hyperscale Platforms Ensono Private Cloud Networking Storage IBM z Mainframe IBM Midrange23The Solution24US DatacentresAnsible SolutionObjectives Simplify integrations Reduce Infrastruct

26、ure Sprawl Speed up Release cycles Improve Consistency Modernise Deployment MethodsClientsUK DatacentresClientsBastionv19.1Bastionv19.1Legacy US1 DatacentresClientsLegacy US2 DatacentresClientsLegacy UK DatacentresClientsIsolated Nodesv17.1v17.1Isolated Nodesv17.1Ensono ApplicationsEnvision25US Data

27、centresAnsible SolutionDesired State Simplify integrations Reduce Infrastructure Sprawl Speed up Release cycles Improve ConsistencyClientsUK DatacentresClientsLegacy US1 DatacentresClientsLegacy US2 DatacentresClientsLegacy UK DatacentresClientsEnsono ApplicationsEnvisionMeshMeshMeshMeshMeshControll

28、er26Initial Kubernetes Ansible to configure RHEL node for Kubernetes RKE2 to deploy the cluster from config Rancher deployed in a container to manage clusters Multiple servers to manage and monitor Complexity of the system made it difficult to hand off to support Each layer had its own config How to

29、 manage code and deployments to ensureconsistency between environments.Version matching and compatibility testing before prodimplementationController27Simplified Approach RedHat OpenShift provides Container platform Ansible used to create cluster in RedHat Console VMs are provisioned and GitOps is c

30、onfigured for code repos GitOps configures cluster based on branch from our standard cluster configs Cluster specific configurations are applied to the cluster including user access and rolesControllerRed Hat QuayRed Hat OpenShift GitOpsRed HatOpenShiftAnsible core28PostgreSQL to Crunchy Data Crunch

31、y Postgres for Kubernetes selected as our AAP Data platform Backed by a RedHat Partner Expert support and Architecture teams Decelerative Data platform with a“level 5”OpenShift Operator Backups Replication Monitoring Insights Does“exactly what it says on the tin”29Ansible Automation Platform DesignE

32、nvision UK AccessEnvision US AccessEnvision US CoreEnvision US CoreOpenShift pe-uk-appsOpenShift pe-appsAutomation ControllerPrivate Automation HubCrunchy Data PGORedHat US AccessAutomation MeshExecution Node(s)OpenShift UK AccessAutomation MeshExecution Node(s)Automation ControllerPrivate Automatio

33、n HubCrunchy Data PGOOCP Management HostRedHat SSORedHat SSOOpenShift GitOpsOpenShift GitOps30Migration Methodology31Migrations Define our“Source-of-Truth”for content AWX data cleanse in place AWX AAP direct DB migrations Config as Code ETL for other instances32Results33Launch and Migration Rapid in

34、itial delivery of a Dev OCP cluster allowed team to work in parallel on Both OCP and AAP deployments OCP allow rapid and multiple versions of AAP applications with 0 infra required Allow multiple team members their own instances to speed up dev and deployment.100s of iterations pushed GO LIVESeptemb

35、er 19MayJuneJulyAugustSeptemberOctoberNovemberDiscovery/Design SessionsDev/Test InstanceAAP Development OCP DevelopmentOCP Dev/Test DeploymentProd SxSOCP Prod DeployedConfig as Code MigrationMesh to Full Coverage34Mindset ChangeGITopsDev ACBit-BucketMaster branchDev PAHDev AC DBDev PAH DBCanary ACCa

36、nary PAHCanary AC DBCanary PAH DBProd ACProd PAHProd AC DBProd PAH DBArgo Applying Master BranchA&I team able to build/test changesArgo Enforcing Canary BranchA&I team treat as ProdArgo Enforcing Prod BranchBB Pull RequestBit-BucketCanary branchBit-BucketProduction branchBB Pull RequestA&I TeamCommi

37、tting ChangesSCM SyncSCM SyncSCM SyncInfra updatesInfra updatesInfra updates35Benefits 36Building a Community Community has been an integral part of Ansible Teams reduce time evaluating AWX releases freed time for COP Working with Red Hat to create an internal Community of Practice Pillars of our CO

38、P Communication Documentation Beginners Guides Tooling Testing Value 37Embracing Ansible Creators Creators vs Developers Creator-SMEs in their technology stack creating playbooks.Developer-Logical step on from creator now developing modules and more in depth Ansible Content Shared Hosts Built on RHE

39、L Consistent experience for all Ansible Users Launched new Documentation Site based on Doc-as-Code Planning of a streamline SME to Ansible Creator Red Hat Ansible Certified Collections38Ansible with the Mainframe Working with our IBM focused Team Working on OpenSSH and ZAOU deployments Integrating c

40、redential management with Ensono Envision for MF Making them part of the wider Community at Ensono Working across all OS variants IBMi z/OS zlinux39Integration The Ensono Automation FrameworkClient RequestEnvision ConnectEnvision ITOMAnsibleAutomationPlatformClient LPARPattern Use CasesKey Client Us

41、e CasesBuild and provision middlewareRoll out fix packs to thousand of serversSelf-service provisioning portalsIntegrate infrastructure provisioning and IBM Z application deployment into CI/CD pipelineMiddleware configurationNetwork and security configurationOrchestrate and replace existing siloed i

42、n-house automationIntegrate existing automation into overall workflowSSL certification renewal Collect audit and security configuration details,system status and health checksSecurity AutomationProvisioning and MaintenanceConfiguration managementProbe the mainframeCI/CD and Application DeploymentOrc

43、hestration404041Adding Generative AI to the community Running Pilot with COP members Expanded to all Ensono Creators Easy of use in creator tools Community Attributions of suggestions Powered by Watsonx Code Assistant with Red Hat Ansible LightspeedRed Hat Ansible LightspeedRed Hat Ansible Lightspee

44、dwith IBM watsonx Code Assistant The generative AIIBM watsonx Code Assistant powered by the Ansible-specific watsonx.ai foundation modelThe integrated serviceIntegration of AI services into Ansible Automation Platform via the Ansible VS Code extensionThe developer interfaceDeployed natively in Visua

45、l Studio Code via the Ansible VS Code extensionRed Hat Ansible Lightspeed with IBM watsonx Code Assistant TrialPrompt refinement Red Hat Ansible Lightspeed with IBM watsonx Code AssistantCreateAnsible Playbook generationGuided chat to boost developer productivityPlaybook explanation to accelerate le

46、arning of syntax and structure WCA 20B Granite model to generate high-quality recommendationsCustom LLMOn-premise LLM for security and compliance requirementsPlaybook generationGuided chatPrompt refinement44Event Driven Ansible Rapid Prototyping With more time freed up to work on Ensono Specific Enh

47、ancement post moving from AWX Challenge to take a process over from Human intervention running on 3x8 shift pattern Using OCP able to deploy EDA controller in minutes to be ready to test in Our Test Environment Within a working Day had a working EDA Controller in Production With a month saved 8000+m

48、anual user tasks Opened the door new Automation Opportunities along with new convert/recruits for our COP Event-Driven AnsibleAutomated response to alerts about environmentEVALUATEOBSERVERESPONDEVENTDECISIONAUTOMATIONWatch data/streaming data Identify eventWith or without notification and ticketing

49、integration Routed for remediationIdentify known problemTrigger required workflowNo action requiredAutomated resolution triggeredRemediation action completed Shorter MMTR ApplicationsSecurityInfrastructureEdge46Event-Driven Ansible is use case-friendly.NetworkingDiagnose network troubleshooting task

50、sRemediate configurationsCloudEscalate infrastructure issues Ensure compliance Trigger and remediate app deployment Automate app scalingAutomate log enrichment/response Escalate events Trigger cloud estate checks Remediate tasks from service bus Trigger application eventsEnrich healing capabilitiesR

51、ed Hat Ansible Automation Platformwith Event-Driven Ansibleansible.edaMore quality47Fortune 50 IBM and Red Hat FSI customerThis POC trial customer estimates$80M in savings over 3 years by implementing Ansible Automation Platform with Event-Driven Ansible and Ansible Lightspeed with watsonx Code Assi

52、stant.100%More developer confidence in creating Ansible Playbooks91%Reduction in critical playbook failures60%reduction in time spent creating Ansible playbooks48Building Visibility of Automation Value We Implemented Automation Analytics at Go Live49Success in numbers1 year into the consolidated pla

53、tform we seen.an estimate 100,000+hours of automation savings 28 million tasks 158,000+job run.2+Million Secrets/Credentials requested from Envision Device Console per monthPrivileged and confidentialPrivileged and confidential50Ensonos Lessons Learned Build internal cross team collaboration on comm

54、on tools Community of Practice Define you“source of truth”GenAI will help your journey WatsonX Code Assistant for Red Hat Ansible Lightspeed Leverage partner content Ansible Certified collections Ansible Validate patterns Leverage the resilience of RedHat Ansible Automation Platform End to end suppo

55、rt for productsPrivileged and confidentialPrivileged and confidential51ResourcesAnsible Automation PlatformoRed Hat Ansible Automation Platform Blog oUnlock your Automation Advantage with Ansible Automation Platform 2.5oThe Business Value of Red Hat Ansible Automation Platform,IDCo“Diiscovers cultur

56、e of extreme automation is saving 800K annual hours,”Ansible Forum postsoStreamlining AWX Releases:Upcoming changes to the AWX projectoJuly 1:Streamlining AWX releasesoJuly 22:Pluggable,service-oriented architectureoAugust 2:AWX Operator ChangesoAugust 21:AWX UI and credential types transitioning to

57、 the new pluggable architectureStart your event-driven automation YouNathan YeltonEnsono,Lead Ansible&Integration.DMTSNelson D.HsuRed Hat Product Marketing Director,Ansible Business Unit IBM TechXchange#IBMTechXchangeNotices and disclaimersCertain comments made in this presentation may be characteri

58、zed as forward looking under the Private Securities Litigation Reform Act of 1995.Forward-looking statements are based on the companys current assumptions regarding future business and financial performance.Those statements by their nature address matters that are uncertain to different degrees and

59、involve a number of factors that could cause actual results to differ materially.Additional information concerning these factors is contained in the Companys filings with the SEC.Copies are available from the SEC,from the IBM website,or from IBM Investor Relations.Any forward-looking statement made

60、during this presentation speaks only as of the date on which it is made.The company assumes no obligation to update or revise any forward-looking statements except as required by law;these charts and the associated remarks and comments are integrally related and are intended to be presented and unde

61、rstood together.2024 International Business Machines Corporation.All rights reserved.This document is distributed“as is”without any warranty,either express or implied.In no event shall IBM be liable for any damage arising from the use of this information,including but not limited to,loss of data,bus

62、iness interruption,loss of profit or loss of opportunity.Customer examples are presented as illustrations of how those customers have used IBM products and the results they may have achieved.Actual performance,cost,savings or other results in other operating environments may vary.Workshops,sessions

63、and associated materials may have been prepared by independent session speakers,and do not necessarily reflect the views of IBM.Not all offerings are available in every country in which IBM operates.Any statements regarding IBMs future direction,intent or product plans are subject to change or withd

64、rawal without notice.IBM,the IBM logo,and are trademarks of International Business Machines Corporation,registered in many jurisdictions worldwide.Other product and service names might be trademarks of IBM or other companies.A current list of IBM trademarks is available on the Web at“Copyright and trademark information”at: TechXchange|2024 IBM Corporation53