This role was designed to check the AAP node requirements before to run the AAP installer.
- Does not support Ansible Check Mode (Dry Run).
Ansible: ansible-core 2.13 or higher Python: 3.8 or later
To use correctly this role you will need to create an inventory file with the structure below and define the target nodes inside the groups according its function:
@all:
|--@automationcontroller:
|--@automationhub:
|--@database:
|--@execution_nodes:
|--@ungrouped:
Create the corresponding group_vars directories where you will create the variable files. I suggest the following structure of folder and files below:
group_vars/
├── automationcontroller
│ ├── compute.yml
│ └── storage.yml
├── automationhub
│ ├── compute.yml
│ └── storage.yml
├── database
│ ├── compute.yml
│ └── storage.yml
└── execution_nodes
├── compute.yml
└── storage.yml
groups_vars/automationcontroller/compute.yml sample file:
cat << eof > compute.yml
vcpu: 2
memory: 2048
eof
groups_vars/automationcontroller/storage.yml sample file:
cat << eof > storage.yml
volumes:
- mountpoint: /
size: 10 # The value in GB
eof
NOTE: You must have access to a privileged account on the target nodes to run these tasks.
Name | Default value | |
---|---|---|
redhat_version | 8.3 | Specify minimum required Red Hat OS version. |
cpu | MANDATORY | Specify cpu number |
memory | MANDATORY | Specify memory number |
volumes | MANDATORY | Specify mountpoint volume and size |
ansible_username | ansible | Specify the ansible user on the target nodes |
ansible_user_password | MANDATORY | Specify the ansible user password |
authorized_ssh_pub_key_ansible_user | UNDEF | Specify SSH public key deployed on the target nodes |
rhn_username | MANDATORY | RHN username to connect Red Hat Cloud services |
rhn_password | MANDATORY | RHN password to connect Red Hat Cloud services |
pool_ids | OMIT | Number of pool(users with SCA enabled dont need it) |
rhn_force_register | true | If defined, force re-register of machines |
ansible_repository | ansible-automation-platform-2.1-for-rhel-8-x86_64-rpms | Ansible packages repository |
common_packets | [chrony,firewalld] | Specify default packages that need to be installed |
extra_packets | UNDEF | If defined, install the additional packages to install |
common_services | [chrony,firewalld] | Specify the basic services to install |
common_ntp_pool | 2.rhel.pool.ntp.org | Specify a NTP server |
timezone | MANDATORY | Specify a timezone |
ansible_port | 22 | Specify SSH port |
nginx_http_port | 80 | Specify HTTP port (controller and hub) |
nginx_https_port | 443 | Specify HTTPS port (controller and hub) |
pg_port | 5432 | Specify Postgresql database port |
receptor_listener_port | 27199 | Specify MESH port (controller, hop and exec nodes) |
common_urls | [] long list of Redhat and Ansible urls | Specify url used by the installer |
playbook.yml
cat << eof > playbook.yml
---
- name: Example playbook
hosts: all
roles:
- aap_requirements_check
eof
secrets.yml
Run the command below to create a Ansible vault file:
$ ansible-vault create secrets.yml
Create the variables, for instance:
ansible_user_password: 4ns1bl3
rhn_password: YOUR_RHN_USER_PASSWORD
extraVars.yml
cat << eof > extraVars.yml
rhn_username: YOUR_RHN_USER@redhat.com
timezone: Europep/Madrid
eof
I'm skipping some tasks to make it more quickly
ANSIBLE_NOCOWS=true ansible-playbook -k -i inventory -e @secrets.yml --ask-vault-pass -e @extraVars.yml --skip-tags subscription,install_packages,configure_chrony,configure_firewall_rules,services playbook.yml
TAGS Available:
playbook: playbook.yml
play #1 (all): Ensure the nodes has the compute, storage and basic configuration requirements TAGS: []
TASK TAGS: [ansible_credentials, check_access_download_collections, compute_storage, configure_chrony, configure_firewall_rules, configure_hostname, generate_hosts_file, install_packages, os_version, services, subscription]
BSD