Open Source Datacenter Conference 2011 System Management with RHN Satellite
Bringing the Community, Vendors and Users Together Enterprise Users Hardware vendors Software vendors Open Source Community
A Complete, Open Stack Products, Services, and Support for Enterprise-Class Applications Red Hat Enterprise Linux Platform Middelware Integration Solutions Services Virtualization High Availability Clustered storage Volume management, Multi-path I/O LAMP stack JBoss Enterprise Application Platform JBoss Enterprise SOA Platform JBoss Communications Platform JBoss Enterprise Portal Platform JBoss Enterprise BRMS Cloud & Management Red Hat Network Satellite JBoss Operations Network Red Hat Directory Server Red Hat Certification System JBoss Enterprise Data Services JBoss Enterprise Frameworks JBoss Enterprise Developer Studio MRG Messaging Red Hat Enterprise Virtualization Hypervisor Manger for Server Manager for Desktop Red Hat Training & Certification Red Hat Consulting Red Hat Support
Management for Red Hat Enterprise Linux
RHN Satellite What is it? easy-to-use, advanced systems management platform for your Linux infrastructure built on open standards uses a web-based graphical interface and / or XMLRPC API services are provided through add-on modules provide simple tools to efficiently manage the life cycle of systems This includes: provisioning new systems managing their updates and configuration changes monitoring system performance re-deploying the systems for a new purpose
Red Hat Network Hosted Customer Systems RHN Hosted System Management Software Distribution Account Management Subscription Management WEB INTERFACE MANAGED SYSTEMS RHN Proxy Quick setup is designed for rapid and efficient management for small deployments All system information, profiles, and packages are stored in Red Hat's servers Each managed system connects across the Internet for all managed actions Red Hat Network Proxy can be added to lower bandwidth use by caching packages locally
Red Hat Network Satellite RHN Satellite Software Distribution Account Management Channel Management Monitoring Provisioning RHN Hosted Software Distribution Subscription Management WEB INTERFACE RHN Proxy API LAYER MANAGED SYSTEMS IT Applications Custom Content Enterprise management solution enhanced control Local Oracle database stores all packages, profiles, and system information Synchronizes content with RHN Hosted, another Satellite, or physical media Custom content distribution
RHN Satellite - Components
RHN Satellite Technical Architecture
System Management Components Application B Actions Actions Security Security Config Config Software Software Red Hat Network Satellite Provisioning Engine Application Stack Application A Red Hat Network Satellite Software Management Red Hat Network Satellite Configuration Management Network Configuration Standard Core Build Hardware Configuration Infrastructure Service Entries Security Configuration Operating System System Mgt. Integration Red Hat Network Satellite Action Management Red Hat Network Satellite Cobbler Integration
Red Hat Enterprise Linux Life-cycle Service Packs with hardware enablement during Production I phase of four years. Total of seven years for the regular life-cycle 3 years Extended Life-cycle Support (ELS) option 8 EUS streams with 18 month overlap each
Errata Additional Update Information [...]
Errata Additional Update Information 3 different categories: Security Update (RHSA) Bug Fix Update (RHBA) Enhancement (RHEA) 4 different impact levels: Low Moderate Important Critical https://access.redhat.com/security/updates/classification/ Direct CVE Errata Mapping https://www.redhat.com/security/data/cve/ More Information: https://www.redhat.com/security/data/metrics/
Custom Errata Create your own one
Satellite Software Channel Management Software Channels are collections of packages and errata
Satellite Software Channel Management Each system is subscribed to One Base Channel (RHEL Major Release and Architecture) N Child channels (Additional Red Hat software / custom channels) Each Software Channel = yum repo (yum rhn-plugin)
Satellite Software Channel Management Custom Base and Child Channels could be created and used
Satellite Software Channel Management Additional meta information / shared channels / GPG keys assigned
Satellite Software Channel Management Subscription vs. Management Permissions / Organization sharing
Satellite Software Channel Management Import or sync Red Hat Channels (locally or from RHN): CLI: satellite-sync Usually daily cronjob (/etc/cron.d/satellite-sync) 3rd-party repository synchronization: Channels -> Manage Software Channels -> <Name> -> Repositories -> Sync Upload individual packages: CLI: rhnpush --server=<sat-hostname> -c <chan-label> <rpm> Used for binary and source rpms (automatically linked) Used for self-built and 3rd party packages (Attention: Signing, espec. RPM Version 3)
Software Lifecycle Overview Red Hat Network Satellite Server Developer Workstations Custom Chan Stage Dev yum localinstall SignHost GPG PrivKey Test Sys Stage Dev Compare & Clone yum install If Install successful yum install Mock BuildEnv clone Custom Chan Stage Prod yum install BuildHost clone If Install failed Source RPM Custom Chan Stage Ref Test Sys Stage Ref Prod System rhnpush Stage Dev Stage QA Stage Prod
Staging Concept Content Separation Red Hat Network Development System Red Hat SW QA failed Only in the former stage tested software is available in the next stage (no alpha or beta releases) QA System QA passed Custom SW Dev Stage is the only entry point for custom and 3rd party software QA failed QA passed Production System No software bypasses RHN Satellite RHNS = Definitive Software Library
Staging Concept User / Role Separation Development System Content Provision Deployment Content Provision QA System Deployment Production System Content Provision Deployment Software Config Software Config Software Config Software Config Software Config Software Config Transition Operating Transition Operating Transition Operating Accountability Stage Manager Stage Manager Stage Manager Project Owner Responsibility
Configuration Management New Files
Configuration Management New Files
Configuration Management New Files
RHN Satellite Configuration File Management Benefits of configuration file's handled by Satellite: More easy deploying CF owned by an rpm Revision handling with md5sum Revision control (Who has changed when what?) Verification including diff capabilities Macro support (predefined, custom macros using CIF) Sandbox for testing Stacking and ranking of configuration channels (overrides) Roles: configuration admin rights global role SysAdmin can only overwrite centrally managed files using locally managed (modified) files
Configuration Channel Rankings
Configuration Channel Rankings
Configuration Management Rankings Configuration Channel Ranking overrides from general configuration settings to more specific configuration: generic Stage specific / generic configuration Virtualization type specific overrides Location specific overrides Application specific overrides System specific overrides (locally managed) specific
Configuration File Macros Configuration files may require minor customization for each system Satellite supports macros, which are replaced with system-specific data at deploy time Pre-defined macros available: SID, Profile Name, Description, Hostname, IP,... hostname={ rhn.system.hostname } ip_address={ rhn.system.net_interface.ip_address(eth0) } Custom macros for system information set via the API echo "System is located in \ { rhn.system.custom_info(building) }"
System Overview
System Software & Hardware & Config Mgt.
System Remote Commands
System Event History
System Overview Re-Install & Snapshots
System Set Manager Manage 1000 Systems as easy as 1 system
System Lifecycle Management
Efficient System Provisioning fully automated system provisioning including OS (core build) and application stack ( ready2run systems incl. adaptions) Installation takes usually < 10 minutes per system Automated adaptions possible (dynamic provisioning): Detection of environment (virtualization / hardware type) Naming conventions / dynamic snippets / variables Bare Metal Provisioning (PXE) included (cobbler / koan) Configuration of PXE environment (dns, dhcp, tftp) Same method for installation as for re-installation (DisRec) Integrated virtualization capabilities Full process could be tracked (logging, cobbler triggers) Could easily extended by order form frontends / orchestration
Provisioning Enhancements (Cobbler) Cobbler cobblerd daemon runs on the satellite Satellite and cobbler communicate with each other over XMLRPC Koan client utility for initiating guests installs and reprovisioning Kickstarts use Templates Variables / Snippets (see next slide) Built in PXE boot support Cobbler boot iso Simply run 'cobbler bootiso' Can boot any machine to provide a pxe like menu
Cobbler Templating Cheetah based templating (http://www.cheetahtemplate.org/) Variables Defined at the distro, profile, and system level Set in variables tab at each level (Inherited) Can be used within a kickstart as $variable_name Snippets Similar to variables, but more than one line Shared between kickstart files Can be used as $SNIPPET( snippet_name ) Control statements: #if, #for, #while Escaping: Any '$' characters need to be escaped with '\' (i.e. echo \$?) Can also use #raw #end_raw
Kickstart Configuration Editor
RHN Satellite API: Integrate and Automate X M M LRP C RP C LRP C System Management M L- ~450 API Calls X X X M LRP C ~100% Automation Integrate User Access and Controls Software and Configuration Management Reporting
RHN Satellite API - Example
System Virtualization Management Quickly deploy Virtual Machines on RHEL Hypervisors (XEN or KVM) using predefined kickstart configurations
Virtualization Management Virtualization Management Systems Management Physical and virtual guest OS management Virtual Machine Management Red Hat Network Satellite and Red Hat Enterprise Virtualization the perfect combination maximizing your IT infrastructure, while ensuring security and compliance.
Red Hat Cloud Framework
Red Hat Cloud Framework + Public Clouds
Where can I get more information? Online Documentation http://www.redhat.com/docs/manuals/satellite/ Flash Demos Satellite Overview Satellite and HP Compliance Solutions Community Projects http://www.redhat.com/spacewalk/ https://fedorahosted.org/cobbler/ Mailing Lists http://www.redhat.com/mailman/listinfo/rhn-satellite-users
OSDC Konferenz 2011 - Red Hat Network Satellite Thank you! Questions? 50