IaaS with Ansible and ServiceNow

By Al

 In the previous article we showed how organizations can leverage modern automation tools to deliver Storage-as-a-Service on-prem to provide end users with a comparable experience to that of public cloud at a fraction of the cost and with the added benefits of easier security and compliance.  The STaaS demo leaves no one indifferent. What we see often happening is that the viewer’s mind starts to extrapolate and comes up with the logical question:

"Can I do this with other IT resources?"

After all, the IT organization owns more resources than storage and of course, public clouds offers all their services in the same way, directly to the end user through a self-service catalogue

The answer is “YES”, it can be done (and it should be done) for other IT resources. For example, a basic offering for everyone should be Infrastructure-as-a-Service. Both IaaS and STaaS were the original services provided by AWS 14 years go and are to this date the bread and butter of public cloud providers services portfolio. So in today’s article we will show how we can deliver IaaS using ServiceNow and Ansible

The most common hypervisor in the enterprise market is still VMware vSphere so for the IaaS part we will vSphere. Essentially the goals are to allow the end-user to:

  • provision their own VM
  • install applications in their VMs

While presenting about Ansible I often get some customers commenting:

“We cannot use Ansible because we run VMware”

There is a misconception that the only way to automation vSphere environments is to use VMware’s own automation tools such as vRealize suite. The truth is that many 3rd party tools provide the ability to automate VMware environments which makes sense given the prevalence of vSphere in the datacentre. In particular the list of Ansible modules available for VMware is large and covers all aspects of management, including the Virtual Machine lifecycle which is what we need to implement IaaS.

The following screenshot from Ansible Galaxy shows the most popular collection of Ansible modules to manage vSphere. The collection contains 167 modules but the only module our demo uses is “vmware_guest”. These modules leverage PyVmomi, which is a very popular Python SDK for the vSphere API.


In the first part of the video we show how the end user can:

  • select a location for the Virtual Machines. The drop-down menu shows 2 datacentres in 2 different countries, however it could be used to offer different tiers as well, i.e. prod vs dev. These tiers could be underpinned by different clusters or different pools in the same cluster and potentially offer different network/security characteristics
  • specify the number of VMs to provision. For example if we need a web farm consisting of 20 identically configured virtual machines we can create them all in a single step
  • then specify the size of the VM such as vCPU and RAM. Public cloud providers like to use specific t-shirt sizes which is convenient for them but not so much for the user, especially when a non-average VM configuration is required
  • Finally select an operating system to be installed in the VM


 This demo doesn’t include three of the features that we used for the STaaS. Implementing them is not difficult as the same technique would be directly applicable in here:
  • Organizational quotas. The advantage of doing them on an external system is that they can span multiple sites and multiple clusters. The quota management system can easily be expanded to include a quota for a number of VMs or for the individual physical resources (ex: vCPU and RAM) as desired
  • Leases. Very often there is a short term requirement for test & dev. We can offer the user the possibility to select a finite lease for a temporary requirement or a permanent lease for a production workload. The provisioning workflow then creates a scheduled task in Ansible Tower/AWX to deprovision the resources at the end of the lease
  • Notify the end user that the VMs are available. This is easily achieved with the “mail” Ansible module as we did in the STaaS video

In the second part of the video we show how we can install an application on a given VM. The workflow is very simple:

  • Select the location where the VM lives
  • Provide the name of the VM
  • Select the application to install from the drop-down list of available applications provided by the IT department


Some possible improvements would include:
  • Once a location or a target cluster is provided we could retrieve a list of VMs running at that location that the user has rights to and populate the VM name field in a drop-down fashion. This can be done with the “vmware_vm_inventory” Ansible module or through a REST API call to vCenter. However, the drop-down menu could be very large if the user has rights to many VMs
  • We could also provide the option to install the app in the VM creation catalogue entry but this method is convenient also to address the requirement of multiple apps installed in the same VM and the requirement to upgrade an installed app to a newer version, which is straight forward with Ansible

And finally here it is the video

One can imagine that by allowing end users to consume the IT resources we are freeing up our valuable IT engineers from repetitive tasks. Instead these engineers can now focus on creating great OS images and application playbooks that are hardened and configured to best practices to deliver the best possible security and performance. This redeployment of resources and change in roles and responsibilities is in fact the final phase of the IT transformation, “Transform”. The first two phases being “Modernize” and “Transform”


Comments

  1. Harsh Vardhan08 July, 2021 19:55

    Great Content. Thanks for sharing this valuable information.
    VMware Training in Chennai
    VMware Training in Bangalore
    VMware Online Training
    VMware Course in Chennai
    VMware Course in Bangalore
    VMware Online Course



    ReplyDelete
  2. shreekavi24 July, 2021 21:20

    Awesome blog. Thanks for sharing such a worthy information....
    Python Training in Bangalore
    Python Classes in Pune
    Python Training in Hyderabad
    Python Classes in Gurgaon
    Python Training in Delhi

    ReplyDelete
  3. sankar05 August, 2021 19:32

    nice post.vmware training

    ReplyDelete
  4. Anonymous05 June, 2022 13:09

    üsküdar vestel klima servisi
    kadıköy bosch klima servisi
    ümraniye mitsubishi klima servisi
    beykoz bosch klima servisi
    üsküdar bosch klima servisi
    beykoz arçelik klima servisi
    üsküdar arçelik klima servisi
    çekmeköy samsung klima servisi
    kadıköy vestel klima servisi

    ReplyDelete
  5. alexscott08 August, 2023 21:44

    It's official: I passed the ServiceNow Certified System Administrator on my first attempt, and I couldn't have asked for better study materials. These CSA Dumps Study Guide resources were exceptional! The study guides were comprehensive and covered everything I needed to know. The practice questions were challenging and gave me the confidence I needed to face the real exam.

    ReplyDelete
  6. James Joson09 September, 2023 20:35

    This comment has been removed by the author.

    ReplyDelete
  7. rajk93929107 February, 2024 22:36

    Great Article Thank you..

    ELearn Infotech offers Python Training in Hyderabad Madhapur. Our Python course includes from Basic to Advanced Level Python Course. We have designed our Python course content based on students Requirement to Achieve Goal. We offer both class room Python training in Hyderabad Madhapur and Python Course Online Training with real time project.

    ReplyDelete
  8. Tecblogger02 April, 2024 21:18

    A Dedicated Server provider that meets your hosting needs can be a game-changer.

    ReplyDelete

Post a Comment

Popular posts from this blog

Sending PowerStore alerts via SNMP

By Al
Image
In this previous article we discussed how to leverage PowerStore's powerful API to collect audit logs and send them to a Syslog server . We used Logstash to do that because of its extensive list of plugins Sometimes I come across organizations that still have a requirement to send storage array Alerts to SNMP. As in the Syslog case, ultimately most modern monitoring tools today support collecting information via REST API because that's the way the application world is going, i.e. the cloud native way ... it would be fun to see Prometheus monitoring Kubernetes via SNMP :) However there is still some requirement out there for SNMP traps, so we will explore how to do it. For simplicity we will use the same toolset that we used in the previous article. I encourage you to revisit quickly the article as we did an extensive introduction to Logstash, with practical examples as well as a description of the logs available in PowerStore. I won't cover those aspects in this article I
Read more

Sending PowerStore logs to Syslog

By Al
Image
In this article we will explore how to get the logs from a DellEMC PowerStore array to a Syslog server. For this purpose we will use the PowerStore’s REST API, which is a great piece of engineering and a joy to work with as a developer. If you want to learn more about the PowerStore REST API I strongly recommend you quickly skim through the 2 articles I have written about the REST API. Part 1 - http://anzpiper.blogspot.com/2020/08/intro-to-dellemc-powerstore-rest-api.html Part 2 - http://anzpiper.blogspot.com/2020/08/powerstore-rest-api-best-practices.html In particular the second article demonstrates the capabilities of the REST API query language. This is a great feature I will use heavily in the last section so I strongly recommend you read that one at least As a side note, Syslog was developed in 1980. So this year it has turn 40 years old! That is a long time by any measure ... many of my colleagues were not even born in 1980. But in the technology scale it looks even scarier. 198
Read more

Electronic Nose - eNose

By Al
Image
In the previous article I provided details on VeeFarm which was one of the best projects we saw in ANZ Pied Piper 2019 edition and one of the best projects in the history of the program. The program inspired me and others to work together to showcase a great idea and the Pied Piper program itself during our presales conference. An idea I suggested to enhance VeeFarm was an electronic nose that could be used to detect the optimal ripening of the produce to advise the owner that it is the right time to pick it up the produce. This is an idea I had in the backburner for a while but never found the time to work on. Vee gave me the perfect excuse. The electronic nose, or eNose for short, is a custom PCB that hosts a range of gas sensors. For the proof of concept, I used the cheap MQ sensors. These are designed mostly for hobbyists and makers and they barely cost $1 per sensor. As one could expect, tweaking and calibrating these sensors it is even harder than the most expensive counter
Read more