This is a combination of all the Red Hat CoP Config as Code collections to deploy and configure AAP. This is built for multi environment (meaning multiple AAP instances/clusters). If you want an object across all environments put it in the correct file/list under the all group. If there is a specific object for only one environment then put it under that environments folder1.
You will need to replace the vault files with your own with these variables:
---
cloud_token: 'this is the one from console.redhat.com'
offline_token: 'this is the one linked below about api token'
rh_username: 'redhat user login (this is used to attach your subs to controller)'
rh_password: 'password for redhat account'
root_machine_pass: 'password for root user on builder (if not root user more changes will need to be made)'
ah_token_password: 'this will create and use this password can be generated'
controller_api_user_pass: 'this will create and use this password can be generated'
controller_pass: 'admin account pass for controller, if none is given it will default to Password1234!'
ah_pass: 'hub admin account pass, if none is given it will default to Password1234!'
vault_pass: 'the password to decrypt this vault'
...
NOTE: Do not forget to update your inventory files replacing the HERE
lines, if you do not have a builder
server you can use hub
for this. Also update scm_url
in group_vars/all/projects.yml
with your git URL.
We are on the Ansible Forums and Matrix, if you want to discuss something, ask for help, or participate in the community, please use the #infra-config-as-code tag on the fourm, or post to the chat in Matrix.
The awx.awx or ansible.controller collections MUST be installed in order for this collection to work. It is recommended they be invoked in the playbook in the following way.
---
- name: Playbook to configure ansible controller post installation
hosts: localhost
connection: local
vars:
aap_validate_certs: false
collections:
- awx.awx
Collection Name | Purpose |
---|---|
awx.awx/Ansible.controller repo | Automation controller modules |
Ansible Hub Configuration | Automation hub configuration |
Collection Name | Purpose |
---|---|
Controller Configuration | Automation controller configuration |
EE Utilities | Execution Environment creation utilities |
AAP installation Utilities | Ansible Automation Platform Utilities |
AAP Configuration Template | Configuration Template for this suite |
ansible-playbook -i inventory_dev.yml -l dev playbooks/aap_config.yml --ask-vault-pass
currently doesn't work in CLI, expected to be run in Controller
currently doesn't work in CLI, expected to be run in Controller
ansible-playbook -i inventory_dev.yml playbooks/install_aap.yml --ask-vault-pass
Acquire your token at redhat api see access article
ansible-playbook -i inventory_dev.yml -l dev playbooks/install_configure.yml --ask-vault-pass -e "env=dev"
Acquire your token at redhat api see access article
Footnotes
-
If you only have/want one environment you could delete dev/test/prod folders in group_vars and remove all the _all added to vars in all group. Also if you want to have each team/group maintain their own org/code in their own repo, see the repo_per_org branch. ↩