AnsibleTower

Ansible Tower
 
官方文档:
 
环境:
CentOS 7.2
ansible 2.2.0.0
ansible-tower 3.0.3
redis-cli 2.8.19
PostgreSQL 9.4.10
 
亮点
RBAC
一键部署
集中日志、审计
REST API
 
一.安装ansible
 
 
二.安装ansible tower
更需求:内存>=2GB,/var >=10GB。否则会安装失败
1.epel源
yum install http://dl.fedoraproject.org/pub/epel/epel-release-latest-7.noarch.rpm
注意:除了光盘源外还需要extra(CentOS-Base.repo)
2.下载
3.安装
tar xvf ansible-tower-setup-3.0.3.tar.gz
cd tar xvf ansible-tower-setup-3.0.3
修改inventory(postgresql,redis都安装在同一台主机上时只需修改如下3行)
admin_password='password'
redis_password='password'
pg_password='password'
修改完成后执行./setup.sh
 
报错: ansible-tower包打不到

TASK [packages_el : Install the Tower RPM.] ************************************

fatal: [localhost]: FAILED! => {"changed": false, "failed": true, "msg": "No package matching 'ansible-tower == 3.0.3' found available, installed or updated", "rc": 126, "results": ["No package matching 'ansible-tower == 3.0.3' found available, installed or updated"]}

to retry, use: --limit @/root/ansible-tower-setup-3.0.3/install.retry

 

PLAY RECAP *********************************************************************

localhost                  : ok=38   changed=1    unreachable=0    failed=1 
 
而根据自动生成的repo,发现http://releases.ansible.com/ansible-tower/setup/ 该仓库是有对应版本的包的。只是enable=0被禁用了。
解决办法:
手动建一个repo,避免修改后被覆盖
cat >/etc/yum.repos.d/Ansible-Tower.repo <<EOF

[Ansible-Tower]

name=Ansible Tower Repository - $releasever $basearch

baseurl=http://releases.ansible.com/ansible-tower/rpm/epel-7-$basearch

enabled=1

gpgcheck=1

gpgkey=file:///etc/pki/rpm-gpg/RPM-GPG-KEY-ansible-release

EOF
 
再次执行setup.sh后成功安装并运行ansible-tower

RUNNING HANDLER [supervisor : Wait for supervisor to stop.] ********************

ok: [localhost] => {"attempts": 1, "changed": false, "stat": {"exists": false}}

 

RUNNING HANDLER [supervisor : Start supervisor.] *******************************

changed: [localhost] => {"changed": true, "name": "supervisord", "state": "started", "status": {"ActiveEnterTimestamp": "日 2017-01-15 04:39:59 CST", "ActiveEnterTimestampMonotonic": "1881966420", "ActiveExitTimestamp": "日 2017-01-15 04:40:14 CST", "ActiveExitTimestampMonotonic": "1897033772", "ActiveState": "inactive", "After": "rc-local.service systemd-journald.socket basic.target system.slice", "AllowIsolate": "no", "AssertResult": "yes", 

... ...

 

RUNNING HANDLER [httpd : restart httpd] ****************************************

changed: [localhost] => {"changed": true, "name": "httpd", "state": "started", "status": {"ActiveEnterTimestamp": "日 2017-01-15 04:40:08 CST", "ActiveEnterTimestampMonotonic": "1890667186", "ActiveExitTimestampMonotonic": "0", "ActiveState": "active", "After": "systemd-journald.socket basic.target -.mount remote-fs.target system.slice network.target nss-lookup.target tmp.mount", "AllowIsolate": "no", "AssertResult": "yes", "AssertTimestamp": "日 2017-01-15 04:40:08 CST", "AssertTimestampMonotonic": "1890531339", "Before": "shutdown.target multi-user.target", 

... ...

 

PLAY RECAP *********************************************************************

localhost                  : ok=120  changed=40   unreachable=0    failed=0   

 

The setup process completed successfully.

Setup log saved to /var/log/tower/setup-2017-01-15-04:32:54.log

 
 
三.WEB UI
Demo https://fast.wistia.net/embed/iframe/xi5453qdhl?popover=true
setup.sh会自动安装好ansible-tower依赖组件(postgresql,redis,apache),httpd默认监听在80端口
1.登录
默认用户为 admin, 密码是安装时填写的password
提示:可以通过tower-manage changepassword admin直接修改用户密码

要先申请并上传一个license才能下一步
实验环境,这里申请的是无技术支持版,永不过期,最多10节点
申请成功后,license会以附件的形式发送到上面填写的的邮箱
 
【推广】 免费学中医,健康全家人
原文地址:https://www.cnblogs.com/lixuebin/p/10813992.html