Day-15 | Ansible Zero to Hero | #ansible #devops

Abhishek.Veeramalla

25 Jan 202355:51

Summary

TLDRIn this comprehensive DevOps tutorial, Abhishek guides viewers through the practical application of Ansible, a powerful IT automation tool. Starting with the basics, he demonstrates how to install Ansible on an EC2 instance and set up passwordless SSH for seamless server communication. The video progresses to executing ad-hoc commands and crafting Ansible playbooks in YAML format, including tasks like installing and starting Nginx. Abhishek also introduces the concept of Ansible roles to streamline complex playbooks, showcasing the structured approach to automation, ideal for configuring systems like Kubernetes clusters.

Takeaways

📘 Day 15 of the complete DevOps course focuses on practical knowledge of Ansible, following a theoretical discussion from Day 14.
🛠️ Ansible is installed initially on an EC2 instance, with recommendations to use a Linux machine for simplicity, although Mac or Windows can also be used.
🔑 The first practical step with Ansible is setting up passwordless authentication using SSH keys to facilitate communication with target servers.
🔍 Ansible uses an inventory file to manage target server addresses, which can be grouped for specific tasks or configurations.
🤖 Ansible ad-hoc commands are used for executing single or small sets of tasks directly from the command line, as opposed to writing a full playbook.
📝 Ansible playbooks are written in YAML format and are used for more complex sets of tasks, such as installing and starting services like nginx.
🔧 Playbooks can be executed with the 'ansible-playbook' command, which runs the defined tasks on the specified hosts in the inventory file.
🔎 The 'verbose' option in Ansible commands increases the level of detail in the output, which is helpful for understanding Ansible's internal processes.
📚 Ansible roles are introduced for structuring complex playbooks efficiently, sequestering tasks, variables, and other elements into organized files and folders.
🚀 The 'ansible-galaxy' command is used to initialize new roles, which can then be referenced in playbooks to modularize and simplify complex configurations.
🔗 The video script references a GitHub repository containing examples of Ansible playbooks and roles for further learning and reference.

Q & A

What is the main focus of the video script?
-The main focus of the video script is to provide a comprehensive guide on installing and using Ansible for DevOps practices, including practical knowledge and hands-on examples.
Why does the instructor recommend starting with a Linux machine for learning Ansible?
-The instructor recommends starting with a Linux machine because things are generally easier when you start doing them on Linux, although it's also possible to use Mac or Windows if a Linux machine is not available.
What is the first step in using Ansible as mentioned in the script?
-The first step in using Ansible is to install it on your machine. The script provides instructions on how to install Ansible using the package manager specific to the operating system, like apt for Ubuntu.
What is the purpose of the 'sudo apt update' command in the script?
-The 'sudo apt update' command is used to update all the packages on the system to their latest versions, which is a recommended step to perform after installing or setting up a new machine.
How does the script describe the process of setting up passwordless authentication for Ansible?
-The script explains setting up passwordless authentication by generating an SSH key pair on the Ansible server using 'ssh-keygen', and then copying the public key to the 'authorized_keys' file on the target server.
What is an Ansible Playbook and why is it used?
-An Ansible Playbook is a file that contains a set of tasks to be executed on target servers. It is used to automate and standardize the process of configuring and managing infrastructure.
What is the difference between Ansible ad-hoc commands and Ansible Playbooks as per the script?
-Ansible ad-hoc commands are used for executing single or a few tasks immediately, while Ansible Playbooks are used for executing a series of tasks, often in a more complex or structured manner.
How can multiple servers be managed using Ansible?
-Multiple servers can be managed by grouping them in the inventory file. The script mentions that Ansible can execute commands or Playbooks on specific groups of servers, such as 'web servers' or 'db servers', as defined in the inventory file.
What is the significance of the 'ansible-playbook' command mentioned in the script?
-The 'ansible-playbook' command is used to execute an Ansible Playbook. It is different from the 'ansible' command, which is used for running ad-hoc commands.
Can you explain the concept of 'become' in Ansible as described in the script?
-The 'become' concept in Ansible allows you to execute tasks with elevated privileges. In the script, 'become root' is used to switch to the root user to perform tasks that require administrative permissions.
What is the role of the 'gather_facts' step in an Ansible Playbook execution?
-The 'gather_facts' step is the first task that gets executed in every Ansible Playbook. It collects information about the target server, such as its operating system, network configuration, and installed packages, which can be used in the playbook.
How can one learn more about the internal workings of Ansible?
-To learn more about the internal workings of Ansible, the script suggests using the verbose option ('-v', '-vv', or '-vvv') with the 'ansible-playbook' command, which provides detailed debug information about the tasks being executed.
What is the purpose of the 'ansible-galaxy' command in the script?
-The 'ansible-galaxy' command is used to initialize and manage Ansible roles. In the script, it is used to create a new role for Kubernetes, which helps in organizing and structuring complex playbooks.
Can you describe the structure of an Ansible role as mentioned in the script?
-An Ansible role, as described in the script, has a specific structure that includes tasks, handlers, tests, vars, defaults, files, templates, meta, and a README. Each of these components serves a specific purpose in organizing and executing the role's tasks.
What are Ansible roles and why are they important for complex playbooks?
-Ansible roles are a way to organize and structure complex playbooks into reusable and maintainable units. They are important for complex playbooks because they improve efficiency, making it easier to manage tasks, variables, and configurations.

Outlines

00:00

📚 Introduction to DevOps and Ansible

In this segment, Abhishek, the host, welcomes viewers back to his channel and introduces Day 15 of the complete DevOps course. He recaps the previous session on configuration management and the role of Ansible, comparing it with Puppet. The focus of the current session is to provide practical knowledge of Ansible, starting from the basics. Abhishek shares his experience with setting up an EC2 instance on AWS for those without a Linux machine, emphasizing the ease of using Linux for Ansible. He guides through the installation of Ansible using the package manager appropriate for the user's operating system, with a demonstration using an Ubuntu instance. The importance of updating packages and using 'sudo' for root privileges is highlighted. The paragraph concludes with a verification step to ensure Ansible is installed correctly.

05:02

🔑 Setting Up Passwordless Authentication for Ansible

Abhishek proceeds to explain the necessity of passwordless authentication for Ansible to communicate with target servers effectively. He demonstrates how to generate an SSH key pair using 'SSH-keygen' and emphasizes the importance of keeping the private key secure. The public key is then copied to the 'authorized_keys' file on the target server to enable passwordless SSH access. The process is shown for an Ubuntu machine, but Abhishek mentions that it can be adapted for other systems like CentOS. The paragraph concludes with a successful SSH connection to the target server without a password, illustrating the setup's success.

10:02

🛠️ Exploring Ansible Ad-Hoc Commands

In this part, Abhishek discusses the use of Ansible ad-hoc commands for executing simple tasks on target servers without writing a full playbook. He explains the concept of an inventory file, which lists target server IP addresses, and how to use the 'ansible' command with the inventory file to run commands like file creation on the target server. The use of modules in Ansible is introduced, with 'shell' as an example for executing shell commands on the target. The paragraph concludes by emphasizing that while playbooks are not always necessary for simple tasks, ad-hoc commands provide a quick way to perform single or a few tasks on remote servers.

15:04

📝 Understanding Ansible Modules and Ad-Hoc Commands

Abhishek continues the discussion on Ansible by explaining the vast array of modules available and how to find the appropriate module for specific tasks. He demonstrates using the 'shell' module to execute commands like 'nproc' and 'df' to gather system information from the target server. The paragraph also covers how to use the 'copy' module to transfer files between servers, highlighting the flexibility of Ansible's ad-hoc commands. Abhishek encourages viewers to explore the Ansible documentation to understand the modules better and to try different commands to gain hands-on experience.

20:06

🖥️ Grouping Servers in Ansible for Targeted Task Execution

This segment delves into the organization of servers within the Ansible inventory file, allowing for targeted execution of tasks on specific groups, such as 'web servers' or 'DB servers'. Abhishek illustrates how to group servers within the inventory file and execute Ansible commands on these groups. The explanation includes the use of the 'ansible' command with the inventory file and group names to perform operations on selected servers. The paragraph concludes with an interview question preview about grouping servers and executing tasks on specific virtual machines using Ansible.

25:07

🚀 Writing the First Ansible Playbook for Installing and Starting Nginx

Abhishek introduces the concept of Ansible Playbooks and demonstrates writing a simple playbook to install and start Nginx on a server. He explains the YAML format used for writing playbooks and outlines the structure, including the playbook header, host specification, 'become' directive for root access, and tasks. Two tasks are defined: one for installing Nginx using the 'apt' module and another for starting the service using the 'service' module. The paragraph concludes with the execution of the playbook and a verification step to check if Nginx is running successfully on the target server.

30:08

🔍 Using Verbose Option to Understand Ansible Internally

In this part, Abhishek discusses the use of the verbose (-v) option in Ansible to gain a deeper understanding of its internal operations. He explains how the verbose option provides detailed logs, which can be instrumental for debugging and learning the intricacies of Ansible. The example provided walks through the execution of the playbook with increased verbosity, showcasing the step-by-step process that Ansible follows to establish connections, execute tasks, and handle packages on the target server.

35:09

📚 Introduction to Ansible Roles for Efficient Playbook Writing

Abhishek introduces the concept of Ansible roles, explaining their purpose in structuring complex playbooks efficiently. He describes roles as a way to segregate tasks and variables, making playbooks more manageable, especially when dealing with large-scale configurations like Kubernetes clusters. The paragraph includes a demonstration of creating a new role using the 'ansible-galaxy' command and outlines the structure of the role, including various files and folders such as tasks, handlers, templates, and more. The explanation emphasizes the benefits of using roles for organized and scalable Ansible playbooks.

40:11

🌐 Utilizing Ansible Galaxy and GitHub for Role-Based Playbook Management

This segment focuses on the practical use of Ansible Galaxy for initializing roles and GitHub for sharing and managing playbooks. Abhishek demonstrates the process of creating a role for Kubernetes using Ansible Galaxy and discusses the structure of the role with its various components. He then references his GitHub repository, where he shares tested playbooks and roles, and encourages viewers to follow it for updates and examples. The paragraph concludes with an invitation for viewers to explore the repository and use the provided examples as a learning resource.

45:11

🗂️ Dissecting the Components of Ansible Roles

Abhishek provides an in-depth explanation of the components found within an Ansible role, detailing the purpose of each folder and file. He covers the use of 'tasks' for defining actions, 'handlers' for exception management, 'defaults' and 'vars' for variable storage, 'meta' for metadata and licensing information, 'test' for unit testing, and 'templates' for file templating. The explanation aims to clarify the role structure and its components, guiding users on how to leverage roles for efficient playbook organization and execution.

50:11

📘 Conclusion and Further Learning Resources on Ansible

In the concluding segment, Abhishek wraps up the video by encouraging viewers to practice the concepts learned, such as Ansible ad-hoc commands and the execution of the demonstrated playbook. He also points to additional resources, including a video on the 18 most asked Ansible interview questions, for further learning. Abhishek invites feedback and questions in the comment section and expresses his gratitude for viewers' engagement, promising to address any queries in future videos.

Mindmap

Keywords

💡DevOps

DevOps is a set of practices that combines software development (Dev) and IT operations (Ops) to shorten the systems development life cycle and provide continuous delivery of value to end users. In the video, the theme revolves around a complete DevOps course, emphasizing the importance of DevOps in modern software development and deployment processes.

💡Configuration Management

Configuration management is the process of tracking and maintaining information about the software and hardware components of a system throughout its lifecycle. In the script, the instructor discusses the theory of configuration management, highlighting its significance in DevOps and how tools like Ansible play a key role in this domain.

💡Ansible

Ansible is an open-source automation tool used for configuration management, application deployment, task automation, and provisioning. The video script mentions Ansible as a key player in configuration management, comparing it with other tools like Puppet, and demonstrating its practical use throughout the course.

💡EC2 Instance

An EC2 (Elastic Compute Cloud) instance is a virtual server in the Amazon Web Services (AWS) cloud. The script provides a practical example of creating an EC2 instance for learning Ansible, which is a common practice for setting up a Linux machine for DevOps practices.

💡Package Manager

A package manager is a software tool that automates the process of installing, upgrading, and removing software packages. The script mentions package managers like apt for Ubuntu, which are used to install Ansible and other software packages on Linux systems.

💡SSH Keygen

SSH keygen is a command used to generate a pair of cryptographic keys used in SSH (Secure Shell) for authenticating to an SSH server. The video script explains how to use SSH keygen to create a public-private key pair for setting up passwordless authentication, which is a prerequisite for using Ansible.

💡Ad-hoc Commands

In Ansible, ad-hoc commands are simple commands that can be executed on remote hosts without writing a full playbook. The script introduces ad-hoc commands as a way to perform single tasks, such as creating files on a target server, demonstrating the flexibility of Ansible.

💡Playbook

An Ansible playbook is a file that contains a sequence of tasks to be executed on a group of remote servers managed by Ansible. The script describes the process of writing an Ansible playbook in YAML format, which is used for more complex automation tasks, such as installing and starting nginx.

💡Inventory File

An inventory file in Ansible is a file that lists the managed nodes (hosts). The script explains the importance of the inventory file in defining the targets for Ansible commands and playbooks, and how to use it for grouping servers for different tasks.

💡YAML

YAML (YAML Ain't Markup Language) is a human-readable data serialization standard used in programming languages and software applications. The script mentions YAML as the format used for writing Ansible playbooks, emphasizing its readability and ease of use for configuration files.

💡Roles

In the context of Ansible, roles are a way to structure playbooks and are a collection of various files that define tasks, variables, and other elements. The script introduces the concept of roles towards the end, explaining how they can improve efficiency and organization when writing complex playbooks.

Highlights

Introduction to Day 15 of the Complete DevOps course focusing on practical knowledge of Ansible.

Explanation of the importance of configuration management and Ansible's role as a key player.

Comparison between Ansible and Puppet, discussing their differences and use cases.

A step-by-step guide on creating an EC2 instance for beginners to start learning Ansible.

The necessity of installing Ansible on a Linux machine and the process outlined for doing so.

Instructions on updating packages and installing Ansible using the package manager on Ubuntu.

Recommendation to use the system's package manager for easier installation and path configuration.

Verification of Ansible installation using the 'ansible --version' command.

The requirement of having at least two servers for practical Ansible demonstrations.

Demonstration of setting up passwordless authentication between servers for Ansible communication.

Explanation of SSH key generation and the importance of public and private keys in authentication.

Guide on copying the public key to the target server for passwordless SSH access.

Introduction to Ansible ad-hoc commands as an alternative to writing playbooks for simple tasks.

Difference between Ansible ad-hoc commands and playbooks, with use cases for each.

How to execute Ansible ad-hoc commands using the inventory file and module arguments.

The concept of grouping servers in the inventory file for targeted playbook execution.

Writing the first Ansible playbook to install and start Nginx, explained step by step.

Use of YAML format for writing Ansible playbooks and the significance of each section.

Execution of the Ansible playbook and the process of using the 'ansible-playbook' command.

Utilization of the verbose option for increased debug information when running Ansible.

Introduction to Ansible roles for structuring complex playbooks and improving efficiency.

Explanation of the role structure, including tasks, handlers, templates, and other components.

The ansible-galaxy command to initialize new roles for organized and scalable playbooks.

GitHub repository sharing of Ansible examples for learning and practical application.

Transcripts

00:02

hello everyone my name is Abhishek and

00:04

welcome back to my channel so today we

00:06

are at day 15 of our complete devops

00:08

course so in the previous class that is

00:10

day 14 we talked about the theory of

00:12

configuration management uh what is

00:14

configuration management why ansible has

00:15

become a key player we try to compare it

00:18

with puppet and like we talked about

00:20

various other things as well uh

00:22

regarding ansible so it was completely a

00:25

theoretical discussion and today's topic

00:27

we'll try to cover the Practical

00:29

knowledge of ansible perfect so let's

00:31

start from the basics right from the

00:33

basics uh so what I've done is I just

00:35

created an ec2 instance uh like it's

00:38

your choice if you have a Linux machine

00:40

already you can proceed with it but if

00:43

you are a first timer let's say you're

00:45

learning ansible for the very first time

00:46

I would definitely recommend you to

00:48

start with uh like you know a Linux

00:51

machine not Windows or Mac uh the reason

00:54

for that is you know things will be much

00:56

easier when you try when you start doing

00:58

on Linux but uh it's fine uh I mean if

01:01

you don't have a Linux machine and if

01:03

you can't create for some reasons a

01:05

Linux machine on ec2 instance then yeah

01:06

you can also try with your Mac or

01:09

Windows

01:10

Okay so

01:12

what is the first thing that you need to

01:14

do so the very first thing that you need

01:15

to do is to install ansible right

01:17

definitely to try any tool you need to

01:20

start with the installation of the tool

01:22

so let me show you how to install

01:23

ansible in the very first case

01:26

so there are a lot of documentations

01:28

with which talks about installation of

01:30

ansible right uh like you know you can

01:33

go to the official ansible docs as well

01:35

so if you see here this is the official

01:37

ansible docs you can also install

01:39

ansible from here

01:41

but what I would recommend you is

01:44

depending upon your uh distribution that

01:47

you have installed like for example if

01:48

you see here uh this is a Ubuntu machine

01:50

that I created from AWS like this is

01:53

easy to instance that I launched so

01:55

similarly uh like you might have

01:58

launched a sentence one or any other

01:59

thing so it comes with a default package

02:02

manager right so for example in terms of

02:04

Ubuntu I get apt so what you can

02:07

typically do is start with sudo apt

02:10

update okay Sudo is because for running

02:12

any apt commands you would need uh root

02:15

privileges so that's why you have to uh

02:18

prefix it with sudo so sudo apt update

02:21

okay as you do that your all the

02:22

packages will be updated so this is

02:24

definitely this is something that you

02:26

have to definitely do for the first time

02:28

as you install your ec2 instance so once

02:31

you do it okay so I have already done it

02:33

so it took a slightly less time but uh

02:36

in your case it might take a little more

02:38

time don't worry about it once you do it

02:40

uh you can simply do this sudo apt

02:44

install

02:48

okay

02:49

so this will install ansible for you in

02:51

my case like I told you it is already

02:53

installed and it is set to the newest

02:55

version so app did not do anything but

02:57

uh in your case once you run this

02:59

command it would install ansible for you

03:01

okay isn't it so simple like you can go

03:04

to the official ansible documentation

03:05

and try things as well but like I told

03:08

you sometimes it becomes tricky because

03:11

this documentation is a very generic one

03:14

so how does it do it basically installs

03:16

python for you then it installs pip for

03:18

you and using pip in it installs ansible

03:20

so the reason for that is basically they

03:23

wanted to keep the documentation as

03:25

generic as possible irrespective of

03:27

Windows Linux Mac or everything because

03:29

you are doing it through python uh the

03:31

installation would work but the easiest

03:34

way is uh to use your package manager

03:36

because all your package managers have

03:39

ansible as your packages so even if

03:43

you're on Mac you can simply do a brew

03:45

install uh ansible if you are on Windows

03:48

you can do chocolate a install Windows

03:50

so

03:51

uh definitely go with your own package

03:54

manager so that it is added by default

03:56

to the path as well whereas if you are

03:58

doing using this python pip sometimes

03:59

you also have to add it to your path

04:01

okay if your python is configured in a

04:03

different location

04:04

okay so we are done with the first

04:07

things that is to install ansible verify

04:09

it using this command ansible

04:11

hyphen hyphen version so as I do ansible

04:14

hyphen iPhone version you can clearly

04:15

see that it mentions that ansible is

04:18

properly installed okay

04:20

okay make sense so what is the next

04:23

thing that you have to do the next thing

04:25

is using ansible once you've I mean you

04:28

want to start playing with ansible right

04:29

so to start playing with ansible you

04:32

would need one more server yeah I mean

04:34

in the minimum you'll need two servers

04:36

that is uh this server has ansible and

04:38

to practically explain okay you need one

04:41

more server so that you know you can

04:43

configure the other server using this

04:45

ansible server right so that's the

04:47

reason why I have created two servers

04:49

okay so this is the ansible server that

04:52

we have currently logged in and this is

04:53

the target server okay let me increase

04:55

the font

04:56

so this is the target server so what

04:59

I'll do is using this ansible server

05:02

I'll configure the target server okay so

05:04

if you see both of them are Ubuntu so

05:07

that's the reason I named it as Target

05:08

Ubuntu machine

05:10

but irrespective of it you can create

05:12

anything okay it doesn't matter like I

05:15

mentioned in the previous class as well

05:16

all that ansible requires is a

05:18

passwordless authentication so if

05:20

ansible can authenticate without any

05:23

password to these machines so ansible

05:26

can do anything okay it can configure

05:28

anything on that server okay so I have

05:31

two servers now firstly I'll show you

05:33

how to set up passwordless

05:34

authentication right because as I told

05:37

you the prerequisite is ansible should

05:40

be able to communicate this server

05:42

without any password so for that let's

05:44

see how to do that okay

05:47

so uh go to this instance I mean just

05:49

click on this instance you will get uh

05:51

the private IP address like you see here

05:54

so this is the private IP address always

05:56

talk to the always talk to the private

05:57

IB address because you know both of them

05:59

are in the same VPC right and both of

06:02

both of the instants are in ec2 uh

06:05

I mean or on AWS so use the private IP

06:08

address it will be very easy

06:10

so copy this private IP address and let

06:12

me show you uh if I do SSH to it okay so

06:16

let me SSH to the private IP address it

06:18

will ask for the password because uh I

06:21

haven't configured any passwordless

06:22

authentication yet because I want to

06:24

show it to you from the scratch

06:26

Okay so

06:29

if you follow any documentations

06:31

sometimes people will confuse you

06:33

because uh like you know there are

06:35

multiple ways to configure passwordless

06:36

authentication but the easiest way okay

06:39

so some documentations might talk about

06:42

SSH copy ID okay so SSH copy ID is one

06:45

way of doing it just enter SSH copy ID

06:48

and provide the IP address of the target

06:50

server and everything will be set yes

06:52

SSH copy ID is the easiest one but what

06:55

happens is sometimes the SSH copy ID

06:58

does not have enough permissions to do

07:00

it for you so that's why I will show you

07:02

a very easy way okay and if you have any

07:05

questions to this way always uh like you

07:07

know like I always mention you put your

07:10

questions in the comment section I'll

07:11

definitely answer but I'll explain you

07:13

in a very straightforward way so I'm

07:15

pretty sure you shouldn't get any

07:16

questions

07:18

so on the Ubuntu user what you will do

07:21

is simply type

07:23

SSH hyphen Keygen okay what SSS SSH

07:28

hyphen Keygen will do for you is it will

07:30

generate a key for you right that's why

07:32

it's called SSH hyphen keychain what is

07:34

the key it will generate a public

07:36

private IP okay so that means it will

07:38

create a public key and it will create a

07:40

private key so is it asking uh it is

07:42

asking is this location fine home Ubuntu

07:45

dot SSH ID RSA yeah it's okay for me uh

07:48

it says that you already have something

07:50

can I overwrite no problem

07:53

okay in your case you might not have it

07:55

already Okay then enter so what happens

07:59

is once you do this there is a set of

08:02

files that is your public key private

08:04

key known host key known host file that

08:07

is stored in this specific location so

08:09

this directory gets created and there

08:11

are a bunch of files that are stored in

08:13

this directory okay so slash home slash

08:16

Ubuntu dot SSH so how are these things

08:19

created basically these things are

08:21

created using the command called SSH

08:23

hyphen keychain okay so you can enter

08:26

SSH hyphen keychain on your machine and

08:28

after that you get ID RSA ID RSA pob

08:33

so this is your private key and this is

08:35

your public key so private key is used

08:37

to log into this machine and private key

08:40

is something that you can that you

08:41

should never share with anybody okay so

08:44

what is that you need to share if

08:45

somebody says that okay let's

08:48

communicate with each other always go

08:50

with the public key so what we will try

08:51

to do is like I told you we will try to

08:54

talk to this target server okay from

08:56

this ansible server in a passwordless

08:58

way okay so we don't want to

09:00

authenticate using the password so for

09:02

that reason what I'll do is I'll take

09:04

this public key okay cat public key

09:08

uh sorry I'm not in that directory so uh

09:12

what I can do cat followed by this

09:15

location followed by ID underscore

09:19

RSA

09:21

dot Pub okay so this is my public key

09:24

let me copy this public key okay and

09:27

once I copy this public key what I will

09:29

do is again login to your second machine

09:32

okay that is your target server so take

09:35

a new tab okay and I'm already logged in

09:37

here let me also increase the font for

09:39

this one

09:43

okay I hope the font size is good so

09:46

this is the uh other I other server or

09:50

the target server if you see the IP

09:51

address 172 31 6228 okay now what I will

09:55

do is

09:57

just do the SSH keys in here as well

10:00

okay once you do the SSH keys in here as

10:02

well okay it will

10:05

again create the same set of files so if

10:07

you do LS

10:09

dot SSH

10:11

so you will see here that you have

10:13

authorized keys private key and public

10:16

key okay makes sense so now what we'll

10:18

do is just open the authorized

10:24

okay authorized keys in the authorized

10:27

case what you need to do is the one that

10:30

you copied here right so you open the ID

10:33

RSA Pub copied the content and then

10:35

paste the content here

10:38

okay so just paste the content from here

10:41

to

10:45

here

10:47

and just save this file now let me see

10:50

what happens okay I'll execute the SSH

10:52

command one more time okay SSH

10:55

followed by the IP address here okay

10:58

this is the IP address let me do SSH to

11:01

the Target server

11:04

enter

11:05

awesome what happened I was able to

11:08

authenticate without any password right

11:10

if you see here clearly I did not give

11:13

any password I just said SSH okay up

11:16

Arrow I just did SSH the IP address of

11:20

the target server and as I do SSH I am

11:23

able to connect to the Target server

11:24

without any password so this is the

11:27

prerequisite for your ansible right so

11:29

prerequisite for ansible is you need to

11:31

have a password

11:32

passwordless authentication and how did

11:35

I set up the passwordless authentication

11:36

in simple terms like if I have to

11:39

explain it in one single line what I did

11:41

is I just copied the public IP address

11:44

of the ansible server to the authorized

11:48

case of the target servers let's say you

11:50

will have one more server okay if you

11:52

have one more server what you will do

11:53

let's say we have a Centos server okay

11:56

so again you will follow the same steps

11:58

like uh now you already have the public

12:00

key so you don't have to do SSH key gen

12:02

what you will do is you'll just copy the

12:04

public key and you will create the

12:07

centroid server open the centralized

12:09

server that means SSH to the centralized

12:10

server in a new terminal and open the

12:13

authorized keys and paste your public

12:15

key in the authorized keys of your

12:16

Centos server then ansible will be able

12:19

to communicate or the ansible host will

12:21

be able to communicate to that Target

12:23

server in a passwordless authentication

12:25

way

12:27

awesome I hope that things are very

12:29

clear till now okay what did we do we

12:32

first step we installed ansible and

12:34

second step we set up the passwordless

12:36

authentication with ansible now we are

12:38

half done okay so these are the two

12:40

things that are important and once you

12:42

do these two things we are almost 50

12:44

done because rest all things are pretty

12:47

easy I'll show you we can write ansible

12:49

playbook in no time don't worry about it

12:51

so again ansible perfect ansible is

12:55

installed now before writing ansible

12:58

playbooks okay what is ansible Playbook

13:00

so ansible Playbook is nothing but

13:02

let's take example of shell okay in

13:05

Shell scripting you will write a file

13:07

okay and what do you call that file you

13:08

call that file as a shell script file

13:11

right if you are writing in Python you

13:13

call them as a python files so similarly

13:15

in ansible instead of calling them as

13:17

ansible files we usually call them as

13:20

playbooks that's it okay so whenever

13:22

somebody is asking you have you written

13:24

any ansible playbooks that means have

13:26

you written any ansible files okay but

13:28

is it mandatory to always write ansible

13:31

playbooks okay so like for example if

13:34

you're talking about shell so sometimes

13:36

you might only have to run some basic

13:39

shell commands like for example if I

13:40

have to list some files I can simply do

13:42

LS hyphen ldr as well right I can simply

13:45

do lsf and LTR and it listed the files

13:48

here

13:49

for that do I always have to write this

13:51

shell script saying that uh okay uh

13:54

script.sh and in the script.sh I'll say

13:57

she bang followed by slash bin slash

14:00

bash and LS7 LTR and then run this file

14:03

is it required no so you can also run

14:05

the shell commands similarly with python

14:08

you don't have to write Python scripts

14:10

all the time and execute the Python

14:12

scripts right you can simply say python3

14:14

and here you can write some commands and

14:16

your commands can get executed

14:19

answer will also support something

14:20

similar okay so my main intention to

14:23

explain all of these things is you don't

14:26

have to write playbooks all the times

14:27

okay you can also run ansible commands

14:30

from the CLI okay so it depends on the

14:33

tasks that you are doing

14:35

because the reason why I'm explaining is

14:37

I have seen uh people writing playbooks

14:40

even for simple tasks so look for

14:42

example okay this is my ansible server

14:44

okay sorry this is my ansible server and

14:47

this is my target server let's say the

14:49

task is to just create some files on

14:51

this target server okay so using ansible

14:54

your requirement that you got from your

14:56

team is that okay please use ansible and

14:59

create some files in 100 Target servers

15:01

but in our case right now we just have

15:03

one target server I'll also show you

15:05

with more Target servers don't worry

15:06

about it so we just have one target

15:08

server okay uh the task is just create

15:12

some files on the target server

15:14

this is a very simple task right so for

15:16

this simple task I don't I don't want to

15:18

write a Playbook what is the other way

15:20

so you can like I told you you can

15:22

simply run some ansible commands as well

15:24

it's not always you have to do playbooks

15:26

so in ansible terminology it is called

15:29

as ansible ad hoc commands

15:33

okay so let me show you before writing

15:35

playbooks how to run ansible ad hoc

15:38

commands so to run ansible ad hoc

15:40

commands what you can do is okay ansible

15:43

followed by

15:46

the inventory file location like if you

15:49

followed my yesterdays class I explained

15:51

what is an inventory file inventory file

15:53

is nothing but it's a file which stores

15:55

your IP addresses of the target servers

15:58

like for example I created an inventory

16:00

file here let me open this file and show

16:02

you okay cat inventory what did I do I

16:05

just added the IP address of my target

16:07

server like this is my target server and

16:10

I just added the IP address of the

16:11

target server in the inventory file okay

16:14

so this inventory file can be anywhere

16:16

okay by default ansible uh stores the

16:19

inventory file in slash Etc slash

16:22

ansible slash Host this is the default

16:25

file but you know it's not always

16:27

convenient to use it from here so

16:28

whenever you write your playbooks or

16:30

whenever you run your ads you will add

16:32

her commands uh you can store the

16:34

inventory file in the same same location

16:35

as well so that's the reason why I

16:37

stored the inventory file here if I have

16:40

10 servers what I need to do is I can

16:42

simply uh open the inventory file and

16:45

append the IP address of 10 servers

16:48

perfect so ansible

16:51

minus I the location of the inventory

16:55

file or the name of the inventory file

16:56

followed by the IP address okay what is

16:59

the IP address of your target server if

17:01

you have one target server you can

17:03

provide one target server if you have

17:05

100 Target servers you can group them in

17:07

the inventory file and you can provide

17:09

the name of the group I'll also show

17:10

that don't worry okay so because I just

17:12

have one target server I can simply say

17:14

this one or there is also another thing

17:17

that ansible supports is just say all

17:19

okay so by saying all it means

17:22

everything in the inventory file all the

17:24

servers in the inventory file

17:26

okay so ansible minus I inventory all

17:31

minus M that stands for module now you

17:35

might get a question that okay Abhishek

17:36

how do you know uh what is the module

17:38

I'll show you that as well don't worry

17:40

minus a just create a file okay touch

17:43

test or touch uh

17:47

devops

17:48

class

17:50

just run this simple command okay I'll

17:53

explain you the order of this simple

17:54

command what I am doing in the simple

17:56

command what is a module in ansible what

17:58

is this minus a which stands for

18:00

arguments okay don't worry about it but

18:02

before that just run this simple command

18:04

and see what happens

18:07

okay so what happened is answer will

18:10

give you that okay it changed something

18:12

and this yellow line means that

18:14

everything is good so if you have any

18:16

errors you will get some red color lines

18:19

which indicates that there are some

18:20

errors now let's go to the Target server

18:22

and see if the file is created LS hyphen

18:24

LTR okay if you see here devops class

18:27

and when is it created right now okay

18:30

so I just created the file so what did I

18:33

do I use the ansible

18:36

thank you

18:43

so I use the ansible ad hoc command so

18:47

is it very simple right it is very very

18:50

simple

18:51

and why will you write a Playbook you

18:53

will write a Playbook only when you want

18:55

to execute set of these commands Okay so

18:57

here there is only one comment that I

18:59

wanted to execute on the target server

19:01

right or there is only one task that I

19:03

wanted to perform on the target server

19:04

so for performing this one or two tasks

19:07

you can always go with the ansible

19:09

advert commands similarly with shell as

19:11

well right if you want to perform one or

19:13

two shell commands you can directly

19:15

execute that one or two commands for

19:16

example if I want to just say uh LS

19:19

hyphen LTR and find the size of each

19:21

file okay so what I would do I would

19:24

simply do this right LS minus LTR and if

19:26

there are 10 folders I would see the uh

19:29

like you know size of these 10 folders

19:30

using di minus sh I don't have to create

19:33

a shell script for this similarly if you

19:35

want to execute one or two ansible

19:38

commands or one or two tasks using your

19:41

ansible on your target servers always go

19:43

for advert commands the reason why I'm

19:46

stressing this is many interviewers ask

19:48

these questions what is the difference

19:50

between ansible ad hoc commands

19:54

versus ansible

19:58

Playbook okay so the difference is that

20:01

ansible advert command for one or two

20:03

does ansible Playbook is for multiple uh

20:06

commands perfect I hope the things are

20:08

clear till now okay what did we do we

20:10

installed ansible then we configured the

20:13

passwordless authentication with ansible

20:14

and we also executed ansible advert

20:17

commands to create some files or you

20:19

know to execute some tasks on the target

20:21

server this is amazing right so we did

20:24

already three different things on

20:25

ansible in no time now the question here

20:28

is okay I know many people are getting

20:30

this question here that okay how do you

20:33

know what what is this module uh called

20:35

shell and how do you know what are the

20:36

arguments to pass don't worry about it

20:38

nobody knows everything because there

20:41

are thousands of models in ansible so

20:44

you can simply open your browser and

20:46

search for ansible modules okay this is

20:49

something that everybody does okay don't

20:51

worry about it click on all modules

20:53

because day in day out ansible keeps

20:55

updating the modules because every day

20:58

they is so much contribution that is

21:00

happening to ansible then so like you

21:02

know people keep adding uh commands to

21:05

ansible people keep updating the

21:07

commands to ansibles so always go to the

21:09

documentation and like you know you want

21:11

to just create a file okay so I know

21:14

that using shell you can create so you

21:16

know this is a shell model execute shell

21:17

commands on the targets

21:19

so what I did is I just looked into the

21:22

documentation and I understood from the

21:24

documentation oh okay so ansible

21:26

supports something called as shell

21:28

commands and using the Shell command I

21:30

can create some files okay that is what

21:32

I did and ansible also provides you

21:35

examples like you know here in this case

21:37

ansible told you that okay if you want

21:38

to write a Playbook this is the yaml

21:40

syntaxing that you want to follow but

21:42

what we did we just did one single

21:44

command so that's the reason why I did

21:46

it through and you will add her comments

21:49

so minus m stands for modules and minus

21:52

a stands for what is the command that

21:54

you wanted to execute right for example

21:56

let me change this and show you

21:59

you can execute any shell commands uh

22:02

let me see what is the

22:04

number of processors on the target

22:06

server so what I did I just said n proc

22:09

and it said that okay the target server

22:11

has only one

22:13

CPU let me see

22:16

DF okay so DF is to identify what is the

22:20

disk right so disk usage and you know

22:25

everything about your disk so

22:27

I got the output using DF

22:30

perfect so this is how you can modify

22:32

the advert command arguments and you can

22:35

also do much thing many other things

22:37

like you know you know you can copy

22:38

files from this server to the other

22:40

server using the ad hoc command like uh

22:43

if you want to see that just come here

22:45

in the ansible module section just

22:47

search for copy okay so see what are the

22:50

different copy things that ansible is

22:51

providing so it said that okay so there

22:53

is an argument called copy there is a

22:55

module called copy okay so I understood

22:57

from here what I'll do is I can replace

23:00

this module from Shell to copy okay and

23:04

I need to understand what are the

23:05

arguments that's it so here you can

23:07

directly jump to the example and see

23:09

what are the arguments so for the copy

23:11

these are the different arguments that

23:13

are passed okay so simply what I can do

23:15

is in minus a I can replace this

23:18

arguments like I can say simply

23:20

SRC colon what is the location I can

23:24

provide the location of the file

23:26

after that I can say destination right

23:28

now I'm just showing it to you how to do

23:30

it okay and then

23:32

provide owner details if they are

23:34

required and all of those things so this

23:36

is how you will learn ansible ad-hoc

23:38

commands so I showed you one command you

23:40

can try different things like like you

23:42

can try copy you can try SCP you can try

23:46

uh like you know deleting files on your

23:48

target server so try all of them by your

23:50

own

23:51

now let us see what happens when you

23:54

have multiple servers right now I just

23:57

showed you with one server what I did is

23:59

I added that to the inventory file and I

24:02

showed you using executing uh this way

24:05

right so for example I said all

24:07

what if there are two different servers

24:09

okay and one set of servers is your

24:11

teams and one set of server is other

24:13

teams are let's understand this way one

24:16

set of servers are

24:18

PB servers okay database related servers

24:21

and the other set of servers are web

24:24

servers okay so there is a use case that

24:27

runs certain number of playbooks only on

24:30

the DB servers and run certain number of

24:32

playbooks only on the web servers okay

24:34

so if that is a requirement what you can

24:37

simply do is that in your inventory file

24:39

okay open the inventory file and in the

24:41

inventory file you can do grouping of

24:43

your servers okay so here you can simply

24:45

mention as DB servers

24:48

this is just for an example and here you

24:51

can mention as

24:52

web server so the brackets are very

24:54

important okay you have to definitely

24:56

use the brackets let's say I have web

24:58

servers with an IP address

25:02

172.31.62.100 okay so now if I have to

25:07

execute the ansible commands only on the

25:10

web servers what I can do is instead of

25:12

all I can simply say

25:15

web servers so what will happen is

25:17

ansible will go to the inventory file it

25:20

will look into the inventory file it

25:22

will see what are the list of web

25:23

servers okay and it will execute the

25:26

ansible commands on the list of web

25:28

servers if there is one web server it

25:30

will execute on one web server if there

25:32

are 100 web servers it will execute on

25:34

100 web servers

25:36

that means the group of machines that

25:39

are under the name called Web servers

25:42

so this is another interview question

25:43

for you so the question is that

25:46

how do you group the servers in ansible

25:49

or how can you execute certain number of

25:51

tasks only on certain number of virtual

25:54

machines using ansible so for that the

25:57

answer is that in ansible everything is

26:00

configured in inventory file all the

26:02

server names and server details are

26:04

configured in the inventory file you can

26:06

do grouping of your servers in the

26:07

inventory file and tell ansible that

26:10

okay execute this Playbook or run this

26:12

ansible command only on certain number

26:15

of servers or execute only it on web

26:17

servers or execute only it on DB servers

26:20

right

26:21

are things clear till now perfect

26:26

okay so now let's see how to write

26:28

ansible Playbook okay so the reason I

26:31

told you is to write ansible Playbook is

26:33

when you want to execute multiple tasks

26:35

so let me take a scenario okay so the

26:38

scenario here is we want to install

26:41

nginx okay and what we want to do is we

26:45

want to start nginx

26:47

okay so let's say this is the task you

26:50

want to install nginx and you also want

26:52

to start nginx so for this what you need

26:54

to do is you want to write a Playbook

26:57

perfect so let me call it as

27:00

first hyphen Playbook and in which

27:05

format is ansible playbooks written they

27:07

are written in the yaml format okay so

27:09

that's why we will say ansible

27:11

playbook.yaml

27:13

perfect so to start writing ansible

27:15

Playbook don't worry I'll definitely

27:18

keep it very very easy for you guys okay

27:20

so to to start writing ansible Playbook

27:22

just start with three hyphens okay so

27:25

the three hyphens indicates that this is

27:27

a yaml file and after that what we'll do

27:30

is you will start explaining about your

27:31

playbook that is what is the name of

27:34

your playbook okay so the name of the

27:36

Playbook let's say is to install and

27:39

start

27:40

nginx okay so after that what you will

27:45

do is you will provide the list of hosts

27:48

where this Playbook has to run

27:50

okay so to provide these details like I

27:54

told you we usually group the servers in

27:56

the inventory file and if you want to

27:59

execute in all of them so just provide

28:01

uh the server names as all so when you

28:04

provide the server names as all then it

28:06

simply gets executed on all the servers

28:08

in your inventory file

28:11

okay once that that is done so there are

28:14

two cases one is do you want to execute

28:16

this Playbook using the same user or do

28:19

you want to execute this Playbook using

28:21

the root user what do I mean by that so

28:23

there are some times where you want to

28:25

run this Playbook as root user that is

28:27

because let's say you want to install uh

28:31

Engineers so if I go to the other server

28:34

and show you if I do something like uh

28:37

apt install nginx what will happen is it

28:40

will tell you that okay unable to

28:42

acquire dpmg sorry dpk D package logs

28:46

that is because you are not a root user

28:48

so what you usually do is you use sudo

28:50

right so use sudo and then you add the

28:54

command that is because you want to

28:55

execute this command as a root user

28:57

similarly if you want to do something

28:59

similar on ansible you have to use

29:03

something called as become root okay so

29:05

what this become root does is it will

29:07

execute your ansible playbooks as a root

29:10

user

29:11

perfect once this is done you will start

29:14

writing the tasks okay so in yaml the

29:18

syntaxing might look difficult for you

29:21

for the very first time but once you

29:23

start writing it's not that difficult

29:25

okay so what we did here we started with

29:27

three hyphens which indicates that this

29:29

is the ml file and then we use this

29:32

hyphen to start the Playbook that means

29:33

this hyphen indicates that you know it's

29:36

a list so you are going to provide list

29:38

of playbooks you can write one playbook

29:40

in a file or you want to you can also

29:42

write multiple playbooks in a file so in

29:44

my case I can only write I only want to

29:46

write one one Playbook so that's why I

29:49

said okay let me start this one Playbook

29:51

and if I have multiple playbooks what I

29:53

need to do is I can also do this

29:55

okay hyphen name and

29:58

my

30:00

second

30:03

Playbook okay but don't worry about it

30:06

now we are writing only one Playbook

30:07

here

30:09

so we started with the name of the

30:11

Playbook then we told uh in which files

30:13

or on which servers this uh Playbook has

30:17

to be executed so that is the host which

30:19

takes from the inventory file so I put

30:22

here as all so that all the servers in

30:24

the inventor file gets executed then I

30:27

use the become command so what become

30:30

does is uh it will allow you to execute

30:32

it as a root user or you know you can

30:34

also use uh something called as become

30:36

underscore user and you can provide any

30:38

user that you want to

30:40

use

30:42

perfect so now inside the task again

30:44

whenever you have list of tasks okay

30:47

whenever you have list of something in

30:49

uh yaml what you need to do is you have

30:52

to start with hyphen okay which

30:53

indicates that okay so there are list of

30:55

things that you wanted to do so my first

30:58

task would be again provide the name of

31:00

the task always describe your task using

31:01

name okay so install

31:04

Engineers so this would be my first task

31:07

and what is the command I would use okay

31:10

so apt so in either you can do this okay

31:13

shell and you can say apt install nginx

31:18

so that is also quite possible

31:21

this is something that we learned right

31:23

so we use a shell command we use the

31:26

shell model and I said apt install nginx

31:28

you can also do this or ansible by

31:31

default provides a module for apt so you

31:33

can also do this like you know you can

31:35

say apt followed by name what is the

31:38

name of the module that you want to use

31:40

so I want to use I mean I want to

31:43

install nginx so provide the detail as

31:46

nginx and then you say state is present

31:49

that means to install

31:52

so this command is exactly equivalent to

31:56

shell followed by

31:59

apt install nginx

32:03

and it will also start the engine X so

32:06

uh

32:07

for that we'll write a new task but okay

32:09

so shell app install nginx and apt name

32:14

engineering State present both are the

32:16

same things now you can ask me okay if

32:18

both of them are same why do I have to

32:20

run this one okay to keep it more

32:22

generic okay so whenever you want to run

32:24

a certain number of tasks on Ubuntu okay

32:27

always go with the package manager

32:29

because sometimes when you are writing

32:31

the shell commands you might miss some

32:32

things whereas if you are using the app

32:34

which is a package manager module that

32:36

ansible is providing things will be much

32:38

easier and even into even tomorrow if

32:41

the shell command is changed or

32:42

something you can always rely on this

32:45

ansible module that is provided by the

32:47

ansible perfect apt name is nginx state

32:51

is present

32:54

this is Task number one and how do I

32:56

write the task number two again uh match

32:58

the syntax here okay match the

33:01

indentation here and in the indentation

33:03

use another hyphen and write your second

33:05

task what is my second task the second

33:07

task is to start in Linux so the first

33:11

task that I have written is to install

33:13

nginx and the second task that I've

33:14

written is to start in Linux and to

33:16

start in Linux again what you can do

33:19

there are two options here one is

33:24

you can say shell and you can say

33:29

system CTL start

33:33

Engineers or this is one possible way or

33:36

again like I mentioned above ansible

33:39

provides a module okay that is called as

33:41

a service model OKAY using the service

33:44

module you can say

33:46

what is the name of the service that is

33:48

nginx

33:52

followed by what is the state

33:55

so the state here is

33:58

started so I want to have my service in

34:01

started State that's it so our Playbook

34:04

is done we wrote our first Playbook

34:05

isn't it very simple so to write our

34:08

first Playbook what did we do we started

34:10

with three hyphens okay the three

34:12

hyphens indicate that this is a yaml

34:14

file and then we started to explain what

34:16

this Playbook is okay and why did we use

34:19

this hyphen here The Hyphen The Hyphen

34:21

here is to indicate that there can be

34:23

list of playbooks okay and this is my

34:25

first Playbook okay so in the first

34:28

Playbook what you are doing is you are

34:30

explaining install and start in Linux

34:32

and what are the hosts against which

34:34

this has to get executed so this has to

34:37

get executed against the all the hosts

34:39

in the inventory file then become root

34:42

what does this become root does is this

34:44

become root will switch the user to root

34:46

because we wanted to execute some

34:48

package manager related commands

34:51

if you just want to uh like you know

34:53

execute everything through the Ubuntu

34:55

user let's say your Ubuntu user has

34:57

permissions to do everything then you

34:59

don't have to use this line in your

35:01

playbook

35:02

okay once you provide all of these

35:04

details then you go with your actual

35:07

tasks okay in the actual task you

35:09

explain okay what is the first task and

35:12

what is the second task so in the first

35:14

task I provided install nginx okay so I

35:17

wanted to install nginx as the first one

35:19

and then I wanted to ah sorry I did not

35:22

save this file just give me a moment so

35:24

that I'll just rewrite all of these

35:26

things

35:29

okay yeah so

35:32

these are the two tasks that are created

35:33

and this is the description of the task

35:35

now once we have all of these things

35:37

okay once we have two tasks here once

35:40

you have uh written the name of your

35:42

playbook and then you have explained

35:43

everything about your playbook what you

35:45

can do is just save this file okay and

35:48

now what we'll do is we will execute

35:51

this Playbook to execute this Playbook

35:53

previously we use the ansible command

35:56

right so ansible command is used to run

35:58

some ansible commands whereas if you

36:00

want to run ansible playbooks the

36:02

command that you want to use is ansible

36:04

hyphen Playbook okay so the difference

36:07

between ansible and ansible Playbook

36:09

commands is that ansible is used to run

36:11

ansible ad-hoc commands whereas ansible

36:14

Playbook is used to run your ansible

36:16

playbook files that we have just written

36:19

perfect as always provide the location

36:22

of your inventory file if your inventory

36:24

file is in the default location then you

36:26

don't have to provide these details like

36:27

you know if you're using the slash Etc

36:29

host ansible file as your inventory file

36:31

then don't worry uh the details will be

36:35

automatically picked up but always make

36:37

sure that uh you know provide the

36:39

inventory file in the location itself so

36:41

that you know it is it will be more

36:42

convenient rather than using the default

36:44

one

36:45

after that provide the name of your

36:49

playbook okay the name of the Playbook

36:50

is

36:51

firstplaybook.yaml now let's see the

36:54

magic and let's also try to understand

36:55

what is happening

36:57

okay first of all click enter then it

37:00

said that the first task that is

37:02

executed is gathering facts the second

37:04

task that executed is installed nginx

37:07

and the third task is start engine X so

37:10

what has happened firstly gather facts

37:12

so gather fax is nothing but ansible

37:14

will try to get all the information of

37:16

your target server it will also see if

37:18

is it able to authenticate without any

37:20

password or not then it will get more

37:22

details that are required on the target

37:24

server so this is the step that gets

37:26

executed irrespective of What playbook

37:29

that you are writing okay gather facts

37:30

is the first task that gets executed

37:33

after that install nginx so install

37:35

nginx is the task that we wrote and what

37:37

happens after that start in Linux okay

37:40

so all the three tasks are passed let us

37:42

see if in nginx is installed here or not

37:44

so let's run the command sudo

37:49

system serial

37:53

status nginx let us see what has

37:57

happened

37:58

perfect it said that nginx is running

38:00

okay so we have done great job till now

38:03

what I would like to ask is everybody

38:05

who are following this video uh make

38:07

sure that you practice these examples

38:10

okay one is the ansible ad hoc command

38:12

that I showed you and also make sure you

38:14

you execute this same Playbook that I

38:16

have written Okay so it is very simple

38:19

one follow the video okay and write the

38:22

same playbook in the same order okay

38:24

and if you have any questions uh till

38:26

now I would like everybody to put that

38:29

in the comment section perfect

38:31

so we understood what is happening here

38:33

but for the viewers I wanted to show

38:35

this in detail so to read understand

38:38

what is happening within the ansible

38:40

okay what ansible is doing internally

38:42

just add the verbose okay minus V and

38:46

execute the you can add a 2v 3vs uh it

38:50

only increases the verbosity within the

38:51

ansible so if you add uh three V's that

38:54

means ansible prints whatever it is

38:56

doing with highest verbosity so what is

38:58

verbosity it basically means debug okay

39:01

so you will get the debug logs here so

39:04

previously we understood what was

39:05

happening uh just like you know ansible

39:07

created a server and all but if you use

39:10

verbose if you want to understand

39:11

ansible in more detailed way what

39:13

ansible is doing on the target server

39:15

step by step use the verbose option and

39:18

ansible gives you everything like you

39:19

know what what it has started to do

39:21

firstly when you executed this first

39:23

playbook.yaml it was searching for path

39:26

on this Ubuntu Server okay and then it

39:30

uh use some configuration options after

39:32

that it started with this install nginx

39:35

Okay where it gathered the facts The

39:37

Playbook name is install nginx it

39:39

gathered the facts C it is trying to

39:41

establish establish the SSH connection

39:43

okay so it said that okay SSH connection

39:46

was established successfully

39:48

once it established the SSH connection

39:50

then it was looking for some python uh

39:53

related stuff okay because ansible by

39:56

default uses python okay then it also

39:58

found that what is gather facts doing it

40:00

is doing all of these things one is the

40:01

SSH connection one is the uh if you are

40:04

if your target server has uh you know

40:06

all the dependencies that are required

40:08

python dependencies that are required to

40:10

execute and once that is done it will

40:13

start with the c there is lot of

40:15

information it will start with the

40:17

install in Linux and even in the install

40:19

nginx for each and every task what is it

40:22

doing how is it trying to establish the

40:23

connection and what has happened see uh

40:26

it also gave you the Json file which

40:28

indicates

40:29

what has the things that it has done so

40:31

it has installed a package for you

40:32

called nginx and it used apt to do that

40:36

we did it Force no it just used the app

40:38

it did not use any force and then D

40:43

package options everything is present

40:44

here okay so to learn ansible in a

40:47

better way use the verbose option and

40:49

that is what I did when I started to

40:51

learn ansible in the very first things

40:53

because I also also wanted to write my

40:56

own ansible modules so right now I'm

40:59

only explaining you to how to execute

41:01

your ansible playbooks but as I told you

41:03

you can always contribute to ansible and

41:05

write your own ansible modules so to

41:07

understand that you need to understand

41:08

what ansible is doing internally so for

41:11

that use the verbosity option

41:13

perfect so what we have done we have

41:16

also executed our first ansible Playbook

41:19

now

41:20

what are the next things to learn in

41:22

ansible once you learn this you need to

41:25

understand that okay so I wrote my

41:27

answerable playbook and this is looking

41:28

very simple I learned ansible completely

41:31

no

41:32

the reason here is this is a very basic

41:34

installation right we just installed

41:36

engineic and we just started the in the

41:38

next service but there are cases where

41:40

you want to use your ansible playbooks

41:42

to configure your kubernetes cluster

41:44

okay so this is a very classic example

41:46

let me tell you what I wanted to uh what

41:50

usually people do in real time

41:52

organizations let's say kubernetes.ml

41:57

okay so the task here is

42:00

create

42:02

three ec2 instances on

42:06

AWS okay and

42:09

configure

42:13

one of those

42:15

ec2 instances as master

42:19

and configure

42:22

two other

42:24

ec2 instances as worker

42:29

okay so what is the task create three

42:31

ec2 instances on AWS configure one ec2

42:34

instance as master and configure two ec2

42:36

instances as worker so for that what

42:38

usually people or what usually develops

42:40

engine is test is for this uh we use

42:42

terraform okay and for the two other

42:45

tasks we use ansible so this is uh you

42:48

done using ansible and this is also done

42:50

using ansible so people might ask can't

42:53

we do this using uh ansible we can do

42:55

that okay so we can always do uh the

42:58

installation or uh stuff like creation

43:02

using ansible as well but terraform is a

43:04

tool that is specifically designed for

43:06

that purposes okay you can create ec2

43:08

instances using ansible as well uh it's

43:10

like for example if you want to purchase

43:12

movie tickets okay you can do it through

43:14

bookmyshow as well and you can do it

43:15

through paytm as well but you would

43:17

always go for the best option right so

43:19

the best option here in this case is

43:21

terraform so terraform is an

43:23

infrastructure management tool or it's a

43:25

instruction as code tool so that's why

43:26

uh whenever you wanted to create

43:28

anything with respect to infrastructure

43:30

go with terraform so uh devops Engineers

43:32

usually create these ec2 instances using

43:34

terraform and perform these two actions

43:37

using ansible now if these two actions

43:39

cannot be written in one one simple

43:42

Playbook right for example if you look

43:44

at our first playbook.yaml this has only

43:46

two tasks but if you want to configure

43:48

both your kubernetes control plane as

43:51

well as your kubernetes data plane or

43:53

Master as well as your worker nodes

43:55

your playbook will become very huge okay

43:58

so almost you will have some 50 to 60

44:00

tasks and if you start writing this

44:03

entire 50 to 60 tasks in one

44:05

playbook.aml file it will be impossible

44:07

to read okay so for that very own reason

44:10

what ansible has done and there will be

44:13

lot of variables and there will be lot

44:15

of uh configuration files you have to

44:17

handle some errors right to avoid that

44:20

uh specific kind of problems what

44:22

ansible has done is it has come up with

44:25

a concept called ansible roles okay what

44:28

is that ansible roles

44:31

now what is ansible rules so ansible

44:34

rules is nothing but like you know in a

44:36

very simple terminology if I have to

44:38

explain your ansible roles ansible roles

44:41

is efficient way of writing ansible

44:43

playbooks that will only improve your

44:45

efficiency to write complex playbooks

44:47

okay the best example that you can do

44:50

that you can give is whenever some

44:51

interviewer interviewer is asking you

44:53

this question you can simply explain

44:55

them that okay let's say I want to

44:57

configure a kubernetes using ansible so

45:00

it will have close to some 50 to 60

45:02

tasks and you have a lot of variables

45:05

you have lot of parameters you have

45:07

certificates right you have secrets that

45:09

you have to configure while creating

45:10

this kubernetes cluster so for that very

45:13

own reason if you try to do it with

45:15

rules like you can segregate each and

45:17

everything and you can properly

45:19

structure your ansible playbooks so

45:21

that's why the concept of roles is

45:23

introduced

45:24

so if you want to start playing with

45:27

rules okay what you can simply do is you

45:30

can use this command called ansible

45:31

Galaxy okay and then you can say

45:34

initialize okay ansible Galaxy role init

45:38

stands for initialize and just start

45:41

saying that uh I want to create a role

45:43

for kubernetes okay so let me uh create

45:45

a folder for this before that

45:52

okay so this is my second playbook for

45:55

example my second Playbook is to

45:57

configure kubernetes so what I'll do is

46:00

I'll do ansible hyphen Galaxy role

46:04

init kubernetes now let us see what

46:07

happens as you execute this command okay

46:10

what happened is ansible said that role

46:12

kubernetes was created successfully what

46:14

is that let me do LS so if you see LS if

46:17

you do LS you'll see that there is a

46:19

folder called kubernetes that is created

46:22

let me open that folder and see what is

46:24

inside that okay

46:27

LS

46:30

kubernetes okay you will see bunch of

46:33

files that are created for you this is

46:35

the concept of roles okay if you do LS

46:38

hyphen LTR and see what is inside each

46:41

and every folder okay so whenever you

46:44

execute this command ansible creates you

46:47

bunch of files and folders okay and

46:49

using these files and folders you can

46:51

structure your ansible playbooks okay so

46:55

you have templates you have files you

46:56

have readme where you can explain what

46:58

this Playbook is and what are the rules

47:01

and responsibilities of this Playbook

47:02

you can create tasks like previously we

47:04

used to write tasks in the playbook.yaml

47:06

right whereas here you will use the task

47:09

and then you have handlers you have

47:11

tests vars defaults and meta I'll

47:14

explain you each and every of this thing

47:16

don't worry but till now what I wanted

47:18

to explain you is that whenever you want

47:21

to write some complicated playbooks okay

47:23

what what you would do is you will start

47:26

using the ansible Galaxy command to

47:29

create roles and what happens if you

47:31

create roles is you can write structured

47:33

and efficient ansible playbooks okay so

47:37

to write this entire playbooks in this

47:39

live session uh it will get slightly

47:41

complicated so that that's the reason

47:43

why I have put everything on my GitHub

47:46

repository okay so if you see here this

47:48

is my GitHub repository I I already know

47:51

that most of you are following me on

47:52

GitHub and if you are not then I have

47:55

the link in the description don't worry

47:56

you can

47:58

go and click on that GitHub and you will

48:00

see a repository called ansible examples

48:02

so I folk this from ansible hyphen

48:05

ansible examples but I would recommend

48:06

you to follow this repository not the

48:09

parent one because my goal is to keep

48:11

updating this ansible repository with

48:13

more examples so that whenever I create

48:16

a new example you can watch for it for

48:17

example today there is no kubernetes

48:19

example here

48:20

I don't have any kubernetes example that

48:23

is stored in this repository so in

48:25

future I'll add that thing so that you

48:27

can basically watch for it

48:30

so for example here there are a bunch of

48:33

playbooks right so let's say that I want

48:35

to look for JBoss Standalone okay I want

48:37

to install a JBoss server and I want to

48:40

configure the JBoss server so what you

48:43

will do is instead of writing everything

48:45

inside the playbook.yaml like uh this is

48:48

the playbook.yaml file so the yaml file

48:50

that is present at the parent level or

48:52

at the top of your folder is your parent

48:55

playbook.yaml that is the same as we

48:57

wrote here okay so if you remember we

49:00

wrote something called as first

49:01

playbook.aml right so this is the

49:03

site.aml side.aml is here parent

49:06

playbook.aml in this case okay what did

49:08

I provide I just provided the name of

49:10

the host and then I said that everything

49:13

else you can find in the role okay so

49:16

previously what we used to write we used

49:18

to write uh what is the name of this

49:19

Playbook what are the hosts and then we

49:22

used to write task here itself right

49:23

instead what we do is whenever we are

49:26

writing roles we just segregate and we

49:29

say that okay this is the whole us and

49:31

if you want to look at the tasks and

49:32

other details just find it in the roles

49:34

folder and what is the rules folder

49:36

JBoss Standalone okay let us see what is

49:38

there in the JBoss Standalone folder

49:40

okay go to the roles and inside roles

49:43

you have JBoss Standalone okay if you go

49:45

to jibos Standalone then we have all of

49:48

these files and folders right so

49:50

whenever you do by default you get bunch

49:53

of things if you don't require some of

49:55

these things for example here second

49:57

Playbook and inside this I have

49:59

kubernetes

50:01

CD second Playbook

50:04

okay and inside this CD kubernetes

50:07

so here you have bunch of these things

50:09

right so if you let's say you don't want

50:11

to read me dot yaml let's say you don't

50:12

want default you can delete them no

50:14

worries okay so here you have files and

50:17

let's tasks and templates so inside the

50:19

task we write everything that is related

50:22

to this task.aml okay that is all the

50:25

tasks so previously we used to write

50:26

everything on the parent playbook.yaml

50:29

but to segregate and to make things

50:31

better what you do is you create a role

50:33

and inside the role you write all of

50:35

this tasks

50:37

perfect so this is a view segregate and

50:41

improve the efficiency but what are the

50:43

other files and folders here okay I

50:45

explained what is Task but what is this

50:47

files what is this folders what is this

50:49

templates so let me explain you that as

50:51

well like for example okay so this is

50:54

the entire structure right you have

50:56

templates you have files you have tasks

50:59

you have handlers tests wires defaults

51:02

and meta let's start with meta So Meta

51:04

is basically used to write some metadata

51:07

information inside this file for example

51:10

let's say I have uh I want to provide

51:13

what are the details of this entire

51:16

Playbook what is this entire Playbook

51:17

doing so in such cases you can provide

51:19

the metadata information and also you

51:21

can provide the licensing information

51:23

that is in the future let's say you want

51:25

to share this uh playbooks or share this

51:28

entire Playbook plus role uh to the

51:31

community okay ansible Galaxy community

51:32

so in such cases what you can do is you

51:35

can write the entire information like

51:37

you know this Playbook I have written

51:39

for uh the open source purpose and I

51:41

want to share it and if anybody wants to

51:43

use it for commercial purpose it is not

51:45

allowed okay so such things you provide

51:48

in The Meta folder after that you have

51:50

defaults okay defaults is basically used

51:52

to store some variable kind of things

51:54

like for example if you go to defaults

51:56

today and open the main.yaml so default

51:59

file default file for kubernetes okay

52:01

you can store some variables and you can

52:03

do the same thing with vars folder and

52:06

also Group ads folder I'll explain you

52:08

what is the difference between each of

52:09

them in the interview questions don't

52:11

worry

52:12

and then there is test folder so test is

52:15

just like any other test that you write

52:16

uh even if you are writing uh shell

52:18

scripts or even if you're writing Python

52:19

scripts you basically add some unit

52:21

tests right so that is similar here and

52:24

then you have handlers handlers is

52:26

basically for handling some kind of

52:28

exception let's say while you are

52:30

starting uh nginx server in our previous

52:32

example we ran into some error so using

52:35

the handlers what you can do is you can

52:37

either send some mail notifications or

52:38

you know you can say that whenever This

52:40

nginx Server is failing to start there

52:43

is no purpose of installing nginx itself

52:45

so delete the nginx also okay so this

52:48

sort of things you can handle it so

52:49

Handler is basically the situations that

52:52

you want to handle

52:54

then task I don't I don't have to

52:56

explain it I know that you all are

52:58

familiar with tasks by now and readme.md

53:01

so basically you can explain uh our

53:03

viewers or you know who are watching

53:05

this repositories you can tell them that

53:06

what is the uh content of this uh uh

53:09

ansible playbooks what we stored in the

53:11

sensible playbooks and all then files

53:13

you can store some files like uh for

53:15

example you have some uh certificates or

53:17

you know uh you have some uh basic

53:20

example is let's say you have some

53:22

index.html and you want to pass this

53:24

index.html okay so in such cases you can

53:27

use uh files as well like uh for example

53:30

you want to pass the index.html onto the

53:33

uh task okay you want to copy the

53:35

index.html from here to another machine

53:38

so using the uh files folder you can

53:41

store them and you can pass so template

53:43

is for basic templating right so ansible

53:45

uses the ginger to templating and if you

53:47

want to use any anything related to this

53:50

templates you can store in the templates

53:52

folder

53:53

perfect so this is about your ansible

53:55

structure and why ansible roles are used

53:58

so you can take a reference or take a

54:00

look at these files and folders that I

54:03

stored in my GitHub repository like I

54:05

told you there are bunch of examples

54:07

okay so you can start looking at them

54:09

but before that what you need to do is

54:11

you have to be acquainted with ansible

54:14

advert commands you have to start

54:16

writing your first ansible playbooks and

54:19

then you in like you know I also showed

54:21

you how to establish password

54:22

authentication and all of these things

54:24

get familiar with them as well after

54:26

that go to this roles concept and

54:28

Implement ansible roles for that you can

54:31

pick any of the example that I have here

54:33

best start with the JBoss Standalone

54:35

okay if you have any questions with this

54:37

table Standalone uh if you tried and if

54:39

it doesn't work you can let me know but

54:41

uh pretty sure this will work because

54:43

these are all tested playbooks even

54:45

myself I have tested uh some of these

54:47

playbooks so they'll definitely work

54:49

now

54:51

if you want to learn more about the

54:53

ansible interview questions uh don't

54:54

worry I've already done a video on it uh

54:57

just to not stretch this video and to

54:59

repeat the same content I'll put the

55:01

link in the description I have put 18

55:03

most asked ansible interview questions

55:05

okay 18 answer will interview questions

55:08

and their answers so it covers all of

55:10

these topics it covers roles it covers

55:12

handlers it covers like you know uh some

55:15

uh complicated scenario based questions

55:18

on ansible so watch that video so that

55:20

you get clear understanding of what are

55:22

the interview questions that people can

55:23

ask on ansible apart from this if you

55:26

have any questions if you want me to do

55:28

uh more videos on ansible if you fail to

55:31

understand some topics on ansible do let

55:33

me know in the comment section and I'll

55:34

definitely uh do a video for you guys

55:37

I hope you enjoyed this video if you

55:39

like the video click on the like button

55:40

and if you have someone who wants to

55:43

learn ansible please share with this

55:45

share this video with them thank you so

55:47

much I'll I'll see in the next video

55:48

take care everyone bye

Browse More Related Video

Day-03 | Write Your First Ansible Playbook | For Absolute Beginners

Getting started with Ansible 13 - Adding Users & Bootstrapping

Using "loop" versus "with" in Ansible

Day-32 | How to Manage Hundreds of Kubernetes clusters ??? | KOPS | #k8s #kubernetes #devops

Ansible: Installation and Overview

VS Code Remote SSH - How to Set Up Passwordless connection

Rate This

★

★

★

★

★

5.0 / 5 (0 votes)

Related Tags

DevOps CourseAnsible TutorialConfiguration ManagementPasswordless SSHAd-Hoc CommandsAnsible PlaybooksYAML SyntaxRole-Based AccessInfrastructure AutomationAWS EC2