This tutorial will guide you through the basics of using Ansible for automation and configuration management.
- Introduction
- Prerequisites
- Installation
- Inventory
- Playbooks
- Variables
- Modules
- Handlers
- Roles
- Tags
- Running Playbooks
Ansible is an open-source automation tool that simplifies the management and configuration of servers, applications, and network devices. It uses a declarative language to define the desired state of the system and handles the necessary steps to achieve that state.
This tutorial assumes you have a basic understanding of Linux systems and command-line usage.
Before getting started, make sure you have the following:
- A Linux-based system (local machine or remote servers)
- Python 3 installed on your system
- SSH access to the target servers
To install Ansible on your system, follow these steps:
-
Open a terminal or command prompt.
-
Install Ansible using the package manager for your operating system. For example, on Ubuntu, run:
$ sudo apt update $ sudo apt install ansible
On other Linux distributions, refer to the appropriate package manager.
-
Verify the installation by running the following command:
$ ansible --version
You should see the version number and other information about your Ansible installation.
The inventory file in Ansible contains the list of hosts or network devices that you want to manage. It is usually located at /etc/ansible/hosts by default.
To define hosts in the inventory file, open it in a text editor and add the IP addresses or domain names of your servers. You can organize hosts into groups and assign variables to them.
Example inventory file:
[web]
webserver1 ansible_host=192.168.0.10 ansible_user=admin ansible_ssh_private_key_file=~/.ssh/id_rsa
[database]
dbserver1 ansible_host=192.168.0.20 ansible_user=admin ansible_ssh_private_key_file=~/.ssh/id_rsaAnsible playbooks are YAML files that describe the desired state of your system. Playbooks consist of plays, which are sets of tasks executed on a specific group of hosts.
A simple playbook example:
---
- name: Install and start Apache
hosts: web
become: true
tasks:
- name: Install Apache package
apt:
name: apache2
state: present
- name: Start Apache service
service:
name: apache2
state: started
enabled: trueSave the above YAML code to a file named webserver.yml.
Ansible allows you to define variables and use them in your playbooks. Variables can be defined at various levels, such as inventory, playbooks, or roles.
Example playbook with variables:
---
- name: Configure Nginx
hosts: web
become: true
vars:
nginx_port: 80
nginx_user: www-data
tasks:
- name: Install Nginx package
apt:
name: nginx
state: present
- name:
Configure Nginx
template:
src: nginx.conf.j2
dest: /etc/nginx/nginx.conf
notify: restart nginxIn this example, the nginx_port and nginx_user variables are defined in the playbook and used in the tasks.
Ansible provides a wide range of modules to perform various tasks on managed hosts. Modules are self-contained scripts that Ansible uses to perform actions such as installing packages, managing services, copying files, and more.
You can find a list of available modules in the Ansible documentation: Ansible Modules
Example playbook using modules:
---
- name: Manage users
hosts: web
become: true
tasks:
- name: Create user
user:
name: john
state: present
groups: sudo
shell: /bin/bash
- name: Copy SSH key
authorized_key:
user: john
key: "{{ lookup('file', '/path/to/john.pub') }}"This playbook creates a user named "john" and copies the SSH public key to their authorized keys file.
Handlers in Ansible are tasks that are triggered by notifications from other tasks. They are typically used to restart services or perform other actions when a change is made.
Example playbook with handlers:
---
- name: Configure Nginx
hosts: web
become: true
tasks:
- name: Install Nginx package
apt:
name: nginx
state: present
notify: restart nginx
handlers:
- name: restart nginx
service:
name: nginx
state: restartedIn this example, the restart nginx handler is triggered by the notification from the Install Nginx package task.
Roles in Ansible provide a way to organize and reuse playbooks and related files. A role is a directory structure that contains tasks, templates, variables, and other components.
To create a role, use the following command:
$ ansible-galaxy init myroleThis will create a directory named myrole with the necessary files and directories.
Ansible allows you to assign tags to tasks in your playbooks. Tags are useful when you want to run specific tasks or groups of tasks selectively.
Example playbook with tags:
---
- name: Manage web servers
hosts: web
become: true
tasks:
- name: Install Apache
apt:
name: apache2
state: present
tags: [install, web]
- name: Configure Apache
template:
src: apache.conf.j2
dest: /etc/apache2/apache.conf
tags: [config, web]In this example, you can run specific tags using the --tags option when executing the playbook.
To
run a playbook, use the following command:
$ ansible-playbook webserver.ymlReplace webserver.yml with the name of your playbook.
This Ansible playbook contains tasks for various operations, such as installing packages, creating directories, and executing commands.
Before running this playbook, make sure you have the following:
- Ansible installed on your system
- SSH access to the target hosts
To execute this playbook, run the following command:
$ ansible-playbook playbook.ymlReplace playbook.yml with the name of your playbook file.
- name: Print message
debug:
msg: Hello Ansible WorldThis task prints the message "Hello Ansible World" to the console.
- name: Print facts
debug:
msg: "IPv4 address: {{ ansible_default_ipv4.address }}"This task prints the IPv4 address of the host.
- name: Ansible apt install Apache
apt:
name: apache2
state: presentThis task installs the Apache web server using the apt module.
- name: Create directory
file:
path: /home/ubuntu/xyz
state: directoryThis task creates a directory at /home/ubuntu/xyz using the file module.
- name: Ansible apt install Maven
apt:
name: maven
state: presentThis task installs Maven using the apt module.
- name: Ansible apt install JDK
apt:
name: openjdk-11-jre
state: presentThis task installs the OpenJDK 11 runtime environment using the apt module.
- name: Change directory
apt:
name: openjdk-11-jre
state: presentThis task changes the directory. Please note that the task name and module don't seem to match in this case.
- name: Git clone
shell: |
git clone urlThis task clones a Git repository using the shell module. Replace url with the actual repository URL.
---
- name: Build and Deploy Application to Tomcat Server
hosts: tomcat-server
become: true
tasks:
- name: Check if Tomcat is running
systemd:
name: tomcat
state: started
register: tomcat_status
ignore_errors: true
- name: Stop Tomcat if running
systemd:
name: tomcat
state: stopped
when: tomcat_status.changed
- name: Clean Tomcat webapps directory
file:
path: /opt/tomcat/webapps
state: absent
- name: Copy WAR file to Tomcat webapps directory
copy:
src: /path/to/application.war
dest: /opt/tomcat/webapps/
mode: 0644
- name: Start Tomcat
systemd:
name: tomcat
state: startedIn this playbook:
- The playbook starts by checking if the Tomcat service is already running on the target server.
- If Tomcat is running, it stops the service to ensure a clean deployment.
- The playbook then removes any existing applications in the Tomcat
webappsdirectory. - The application's WAR file is copied from the local machine to the Tomcat
webappsdirectory on the target server. - Finally, the playbook starts the Tomcat service again.
Make sure to replace tomcat-server with the actual hostname or IP address of your Tomcat server. Also, update /path/to/application.war with the path to your application's WAR file on your local machine.
You can execute this playbook using the ansible-playbook command:
$ ansible-playbook deploy.ymlReplace deploy.yml with the name of your playbook file.