Automate Patching for Oracle Database in your Private Cloud

Similar documents
Infrastructure at your Service. Setup Oracle Infrastructure with Vagrant & Ansible

FMW Automatic install using cloning

Ansible Essentials 5 days Hands on

Ansible. For Oracle DBAs. Alexander Hofstetter Trivadis GmbH

Cloud and Devops - Time to Change!!! PRESENTED BY: Vijay

Ansible at Scale. David Melamed Senior Research Engineer, CTO Office, CloudLock

Red Hat Ansible Workshop. Lai Kok Foong, Kelvin

Splunk and Ansible. Joining forces to increase implementation power. Rodrigo Santos Silva Head of Professional Services, Tempest Security Intelligence

Contents. Prerequisites 1. Linux 1. Installation 1. What is Ansible? 1. Basic Ansible Commands 1. Ansible Core Components 2. Plays and Playbooks 8

Study Guide. Expertise in Ansible Automation

Getting started with Ansible and Oracle

ANSIBLE AUTOMATION AT TJX

IN DEPTH INTRODUCTION ARCHITECTURE, AGENTS, AND SECURITY

DevOPS, Ansible and Automation for the DBA. Tech Experience 18, Amsersfoot 7 th / 8 th June 2018

Ansible Tower Quick Install

Ansible and Firebird

Infrastructure Configuration and Management with Ansible. Kaklamanos Georgios

Ansible in Depth WHITEPAPER. ansible.com

Ansible. Go directly to project site 1 / 36

Automate DBA Tasks With Ansible

How to avoid boring work - Automation for DBAs

Introduction to Ansible

Ansible F5 Workshop +

Ansible: Server and Network Device Automation

ABOUT INTRODUCTION ANSIBLE END Ansible Basics Oleg Fiksel Security CSPI GmbH OpenRheinRuhr 2015

We are ready to serve Latest IT Trends, Are you ready to learn?? New Batches Info

introducing Haid-und-Neu-Str. 18, Karlsruhe Germany

Button Push Deployments With Integrated Red Hat Open Management

Ansible Bootcamp. Bruce Becker: Coordinator, Africa-Arabia ROC

MULTI CLOUD AS CODE WITH ANSIBLE & TOWER

Ansible + Hadoop. Deploying Hortonworks Data Platform with Ansible. Michael Young Solutions Engineer February 23, 2017

Get Automating with Infoblox DDI IPAM and Ansible

Deploying MySQL HA. with Ansible and Vagrant (101) Daniel Guzman Burgos (Percona) Robert Barabas (Percona)

Housekeeping. Timing Breaks Takeaways

Infoblox and Ansible Integration

Automation: Making the Best Choice for Your Organization

AUTOMATION ACROSS THE ENTERPRISE

AUTOMATION FOR EVERYONE Accelerating your journey to the Hybrid Cloud with Ansible Tower

Ansible Tower Quick Setup Guide

Sanjay Shitole, Principle Solutions Engineer

An introduction to ANSIBLE. Anand Buddhdev RIPE NCC

Harnessing your cluster with Ansible

Ansible Tower Quick Install

AGENTLESS ARCHITECTURE

GIVING POWER TO THE PEOPLE With General Mills

Ansible Tower Quick Setup Guide

(Almost) Instant monitoring

Infrastructure as Code CS398 - ACC

Ansible in Operation. Bruce Becker: Coordinator, SAGrid

SELF-SERVICE IT WITH ANSIBLE TOWER & MICROSOFT AZURE. Chris Houseknecht Dave Johnson. June #redhat #rhsummit

Malaysian Open Source Conference (The) Multi Facets of the Open Source Tools. Muhammad Najmi Ahmad Zabidi

Zabbix Ansible Module. Patrik Uytterhoeven

Getting Started with Ansible for Linux on z David Gross

AUTOMATING THE ENTERPRISE WITH ANSIBLE. Dustin Boyd Solutions Architect September 12, 2017

Automation and configuration management across hybrid clouds with CloudForms, Satellite 6, Ansible Tower

Enhancing Secrets Management in Ansible with CyberArk Application Identity Manager

HASHICORP TERRAFORM AND RED HAT ANSIBLE AUTOMATION Infrastructure as code automation

OPEN SOURCING ANSIBLE

Building and Managing Clouds with CloudForms & Ansible. Götz Rieger Senior Solution Architect January 27, 2017

Ansible Tower on the AWS Cloud

Introduction to CLI Automation with Ansible

INTRODUCTION CONTENTS BEGINNER S GUIDE: CONTROL WITH RED HAT ANSIBLE TOWER

TACKLING BIG-IP BLUE-GREEN DEPLOYMENTS IN PRIVATE CLOUD USING F5 & VMWARE ANSIBLE MODULES

WHAT IS ANSIBLE AND HOW CAN IT HELP ME?

Database Operations at Groupon using Ansible. Mani Subramanian Sr. Manager Global Database Services Groupon

ANSIBLE TOWER OVERVIEW AND ROADMAP. Bill Nottingham Senior Principal Product Manager

Henry Stamerjohann. Apfelwerk GmbH & Co. #macadmins

Ansible and Ansible Tower by Red Hat

Zero Touch Provisioning of NIOS on Openstack using Ansible

Ansible - Automation for Everyone!

RED HAT TECH EXCHANGE HOUSE RULES

Splunk ConfiguraAon Management and Deployment with Ansible

Getting Started with Ansible - Introduction

Rapid Deployment of Bare-Metal and In-Container HPC Clusters Using OpenHPC playbooks

SAS and all other SAS Institute Inc. product or service names are registered trademarks or trademarks of SAS Institute Inc. in the USA and other

Tools for the Vagabonding Samba Developer

INTRODUCTION WHY CI/CD

Be smart. Think open source.

Modern Provisioning and CI/CD with Terraform, Terratest & Jenkins. Duncan Hutty

ansible-workshop Documentation

Ansible Hands-on Introduction

vagrant up for Network Engineers Do it like they do on the Developer Channel!

Managing BSD Systems with Ansible

Provisioning MongoDB with Vagrant and Chef. Nathen Harvey Web Opera=ons, CustomInk

Webserver deployment on. Amazon Web Services using IAC tool Terraform

Dominating Your Systems Universe with Ansible Daniel Hanks Sr. System Administrator Adobe Systems Incorporated

Managing Microservices using Terraform, Docker, and the Cloud

Terraform & Infrastructure as Code. Ben Higginbottom (kind of a big deal) ((seriously - I ve helped hijack a spacecraft))

Setting up Craft with Vagrant

Unix for Software Developers

Choosing an orchestration tool: Ansible and Salt. Ken Wilson Opengear. Copyright 2017 Opengear, Inc. 1

ANSIBLE TOWER IN THE SOFTWARE DEVELOPMENT LIFECYCLE

Behind the scenes of a FOSS-powered HPC cluster at UCLouvain

IAC on OpenStack (feat. ansible) 김용기부장 Sr. Solution Architect Red Hat

Introduction to Ansible. yench

Ansible. -- Make it so

MARCO MALAVOLTI

Ansible. Systems configuration doesn't have to be complicated. Jan-Piet

Ansible Tower Installation and Reference Guide

1 av :26

Transcription:

Automate Patching for Oracle Database in your Private Cloud

Who we are Experts At Your Service > Over 50 specialists in IT infrastructure > Certified, experienced, passionate Based In Switzerland > 100% self-financed Swiss company > Over CHF 8 mio. Turnover Leading In Infrastructure Services > More than 150 customers in CH, D & F > Over 50 SLAs dbi FlexService contracted Automate Patching for Oracle Database in your Private Cloud 22.11.2017 Page 2

About me Nicolas Jardot Senior Consultant +41 79 835 02 95 nicolas.jardot[at]dbi-services.com Automate Patching for Oracle Database in your Private Cloud 22.11.2017 Page 3

Agenda 1.Introduction 2.Patching automation with Ansible 3.Demo 4.Conclusion Automate Patching for Oracle Database in your Private Cloud 22.11.2017 Page 4

Introduction > What are we calling Cloud? > Why speaking about patching? > Oracle Database patching 2 4 1 3 Automate Patching for Oracle Database in your Private Cloud 22.11.2017 Page 5

Introduction What are we calling Cloud? Is Cloud just a marketing/buzz word? > Cloud mostly means operating as a Service > PaaS, DBaaS, aso How can we define Cloud? > Graphical Interface as a portal > Automation Who said autonomous? > Back-charging Pay as you use My personal Cloud definition > Operate your system so the client sees it as a service Page 6

Introduction Why speaking about patching? Reminder: the WannyCry case > Microsoft released security patch on March 2017 > The ShadowBrokers disclosed vulnerability details in April > Worldwide attack started on 15 May 2017 Does it really matter? > Some UK hospitals were impacted to the point some operations were rescheduled > Renault had to stop production sites several days due to the attack > Businesses were impacted The security patch was available since 2 months before a global attack > Time window to test/validate/apply patches is reducing Page 7

Introduction Oracle Database patching Oracle Critical Patch Update program > Collection of security fixes for Oracle products > Released every quarter around 17 th : January, April, July, October > Security alert for critical security issues: 2 in November 2017 > Available on OTN: https://www.oracle.com/technetwork/topics/security/alerts-086861.html Database patching is evolving > CPU/SPU or PSU in Oracle Database 11g > PSU / Proactive Bundle Patch for Oracle Database 12c R1 > RU / RUR starting in Oracle Database 12c R2 Use favorites in My Oracle Support > Doc ID 2118136.2: Download reference for Oracle DB patches > Doc 756671.1: Master note about patch program (previously recommended patches) Page 8

Patching automation with Ansible > Introduction to Ansible > Ansible language > Ansible tasks, playbook and roles 2 4 1 3 Automate Patching for Oracle Database in your Private Cloud 22.11.2017 Page 9

Patching automation with Ansible Introduction to Ansible Ansible is a simple automation language > Open source automation tool > Designed for multi-tier deployment > Agentless Ansible relies on SSH and Python > Push based > Tasks oriented easy to read Ansible is very popular > Extra-module available on Github: https://github.com/ansible > Lots of existing code available on Ansible Galaxy: https://galaxy.ansible.com/ Non exhaustive use cases > Configuration > Provisioning Page 10

Patching automation with Ansible Introduction to Ansible Ansible allows running ad-hoc commands against host $ ansible dbinstances -m ping DB1 SUCCESS => { "changed": false, "failed": false, "ping": "pong" } Ansible gather facts about your systems > You can dynamically adapts your code based on variables $ ansible DB1 -m setup DB1 SUCCESS => { "ansible_facts": { "ansible_architecture": "x86_64", "ansible_bios_version": "VirtualBox", "ansible_distribution": "OracleLinux", "ansible_distribution_version": "7.4", } } Page 11

Patching automation with Ansible Ansible language Ansible code is written in YAML > Human readable way to represent serializable data > Close to JSON and Python --- - name: Install Oracle binaries hosts: dbinstances vars_files: - vars/psu_{{ oracle_version }}_{{ psu_release }}.yml roles: - role: deploy_oracle_home YAML pitfalls > Use indentation but do NOT support tabulation > Create lists be careful with : too Page 12

Patching automation with Ansible Ansible language Ansible is declarative / desired state based > No need for you to test the result > Ansible will assure the declaration is true > Modules should be idempotent Running multiple time should be the same as running only once Ensure the user oracle exists with the required groups - name: Prepare user oracle user: name: oracle password: '{{ oracle_user_pwd }}' groups: - dba - vboxsf Page 13

Patching automation with Ansible Ansible tasks, playbook and roles Playbooks are composed of 1 or more plays > A play is a YAML document describing tasks > A play allows to group actions to certain hosts > Multiple plays are useful for multi-tiers deployment Page 14

Patching automation with Ansible Ansible tasks, playbook and roles Playbooks run against hosts > Need to declare your components in an inventory > Inventory can be dynamically generated Ansible roles allows to create deployment units > Roles contains tasks but also variables > Easily create reusable playbooks with variables > Roles and directory layout helps to organize the code. ansible.cfg deploy_oracle_home.yml inventory Dev group_vars dbservers default_ora_config host_vars DB1 hosts roles create_db tasks main.yml Page 15

Demo 1 > Quick word about Vagrant > Test infrastructure 2 3 4 Automate Patching for Oracle Database in your Private Cloud 22.11.2017 Page 16

Demo Quick word about Vagrant Vagrant is a tool for building virtual machines > Open source tool > Easy way to create reproducible environment > Support several providers (VirtualBox, VMware, AWS, ) > Support provisioning tool like Ansible, Chef or Puppet Vagrant is used to provision standard Linux servers > Oracle Linux boxes available at https://yum.oracle.com/boxes Page 17

Demo Test infrastructure Ansible host Create VM Prepare VM Create DB Linux server DB1 Oracle 12.1.0.2 PSU 170718 Patch DB DB1 Oracle 12.1.0.2 PSU 171017 Page 18

Conclusion 1 2 3 4 Automate Patching for Oracle Database in your Private Cloud 22.11.2017 Page 19

Conclusion Automation increases your security > Develop once, run many in standard way even in parallel > Reduce human errors Automation allows you to commit your infrastructure > Developers commit the business code > Save the code helping to run the code > Playbooks/recipes can be saved in source control and versioning tool (Git, SVN, ) Page 20

Conclusion What s the link with the Cloud? Once playbooks are ready, create your portal to run them and build your Cloud > Ansible Tower > Ansible AWX > Jenkins > Semaphore Ansible integrates well if you go for public Cloud > Ansible has modules to manage/provision AWS EC2 instances > Inventory can be dynamically generated > Maintain your Cloud environment at same level dbi services 26.04.2015 Page 21

Basel Delémont Zürich Any questions? Please do ask! Nyon We would love to boost your IT-Infrastructure How about you? Automate Patching for Oracle Database in your Private Cloud 22.11.2017 Page 22

Let s meet at booth 242

2024 © hobbydocbox.com Privacy Policy | Terms of Service | Feedback