SlideShare a Scribd company logo
Uyuni Saltboot
An Automated Image Deployment And
Lifecycle
openSUSE Conference
project@lists.opensuse.org
oSC22 @openSUSE
Uyuni Saltboot
© Anouchka Unel
configuration management
patch and package management
content lifecycle management
compliance auditing
image building, …
configuration management
patch and package management
content lifecycle management
compliance auditing
image building, …
Saltboot
salt-integrated initrd
salt states and modules
partitioning and filesystem management
filesystem image deployment concept
Saltboot
salt-integrated initrd
salt states and modules
partitioning and filesystem management
filesystem image deployment concept
Automated image deployment
Images
Kiwi (https://osinside.github.io/kiwi/)
Kernel, Initrd, System (KIS)
Building integrated with Uyuni
Saltboot kiwi templates
(https://github.com/SUSE/manager-build-profiles/)
Images
Kiwi (https://osinside.github.io/kiwi/)
Kernel, Initrd, System (KIS)
Building integrated with Uyuni
Saltboot kiwi templates
(https://github.com/SUSE/manager-build-profiles/)
Image building
Packages
Image templates
Build hosts
Image repository
Package management
Product
Channels
Activation keys
Package management
Product
Channels
Activation keys
Package management
Product
Channels
Activation keys
Image building
Packages ✓
Image templates
Build hosts
Image repository
Image profiles
link channels
and image
templates
Image building
Packages ✓
Image templates – saltboot templates ✓
Build hosts
Image repository
Build hosts
VM or real HW
OS Image
entitlement
Image building
Packages ✓
Image templates – saltboot templates ✓
Build hosts ✓
Image repository
Image building
Packages ✓
Image templates – saltboot templates ✓
Build hosts ✓
Image repository (Uyuni) ✓
Image build
link image
profile with
build host
initiate build
Automated image deployment
Deployment
manual dd command
PXE and UEFI PXE
HTTP UEFI
...
Automated deployment
manual dd command
PXE and UEFI PXE
HTTP UEFI
...
PXE, UEFI PXE, UEFI HTTP
DHCP + TFTP
DHCP + HTTP
subnet 192.168.0.0 netmask 255.255.255.0 {
if substring (option vendor-class-identifier, 0, 10) =
"HTTPClient" {
option vendor-class-identifier "HTTPClient";
filename "http://192.168.0.1/saltboot/grub.efi";
} else {
if option arch = 00:07 {
filename "boot/grub.efi";
next-server 192.168.0.1
}
else {
filename "boot/pxelinux.0";
next-server 192.168.0.1
}
}
}
TFTP server?
Uyuni Proxy pod
– squid cache
– tftp router
– salt broker
– ssh tunnel
Proxy Pod
podman pod
k8s deployment
#> spacecmd proxy_container_config_generate_cert -- proxy.example.org uyuni.example.org 30000 
root@example.org -p 8022
#> scp config.tgz containerhost:
#> ssh containerhost -- tar -xf config.tgz -C /etc/uyuni
#> ssh containerhost -- systemctl enable --now uyuni-proxy-pod
Automated image deployment
Automated image deployment
Image? Where? Where to?
Server discovery
Partitioning
Image selection
Saltboot Group
Salt pillar data
– group id
– image repo
server
– naming
PXE menu
Partitioning
Saltboot pillar
Disk selection and partitioning
Image selection
Partitioning
partitioning:
----------
disk:
----------
device:
*
disklabel:
gpt
level:
1
partitions:
----------
p1:
----------
flags:
swap
format:
swap
size_MiB:
2000
Hardware type group
Auto assignment of machines to the group
Group with common partitioning setup
Automated image deployment
Salt and saltboot security
Salt PKI
Salt and saltboot security
Salt PKI
Salt and saltboot security
Salt PKI
Image validation
Image encryption
Automated image deployment
Image lifecycle
Uyuni knows what is in the image
– CVE auditing
Manual image rebuilds
Q&A
https://www.uyuni-project.org/

More Related Content

Similar to Uyuni Saltboot - automated image deployment and lifecycle with Uyuni

Instalando Cacti no CentOS 5
Instalando Cacti no CentOS 5Instalando Cacti no CentOS 5
Instalando Cacti no CentOS 5
Carlos Eduardo
 
A Presentation about Puppet that I've made at the OSSPAC conference
A Presentation about Puppet that I've made at the OSSPAC conferenceA Presentation about Puppet that I've made at the OSSPAC conference
A Presentation about Puppet that I've made at the OSSPAC conference
ohadlevy
 

Similar to Uyuni Saltboot - automated image deployment and lifecycle with Uyuni (20)

Developing IT infrastructures with Puppet
Developing IT infrastructures with PuppetDeveloping IT infrastructures with Puppet
Developing IT infrastructures with Puppet
 
Centos
CentosCentos
Centos
 
Instalando Cacti no CentOS 5
Instalando Cacti no CentOS 5Instalando Cacti no CentOS 5
Instalando Cacti no CentOS 5
 
The Docker "Gauntlet" - Introduction, Ecosystem, Deployment, Orchestration
The Docker "Gauntlet" - Introduction, Ecosystem, Deployment, OrchestrationThe Docker "Gauntlet" - Introduction, Ecosystem, Deployment, Orchestration
The Docker "Gauntlet" - Introduction, Ecosystem, Deployment, Orchestration
 
Build Your Own CaaS (Container as a Service)
Build Your Own CaaS (Container as a Service)Build Your Own CaaS (Container as a Service)
Build Your Own CaaS (Container as a Service)
 
A Presentation about Puppet that I've made at the OSSPAC conference
A Presentation about Puppet that I've made at the OSSPAC conferenceA Presentation about Puppet that I've made at the OSSPAC conference
A Presentation about Puppet that I've made at the OSSPAC conference
 
CI / CD / CS - Continuous Security in Kubernetes
CI / CD / CS - Continuous Security in KubernetesCI / CD / CS - Continuous Security in Kubernetes
CI / CD / CS - Continuous Security in Kubernetes
 
PHP on Heroku: Deploying and Scaling Apps in the Cloud
PHP on Heroku: Deploying and Scaling Apps in the CloudPHP on Heroku: Deploying and Scaling Apps in the Cloud
PHP on Heroku: Deploying and Scaling Apps in the Cloud
 
Bare Metal to OpenStack with Razor and Chef
Bare Metal to OpenStack with Razor and ChefBare Metal to OpenStack with Razor and Chef
Bare Metal to OpenStack with Razor and Chef
 
Docker - Demo on PHP Application deployment
Docker - Demo on PHP Application deployment Docker - Demo on PHP Application deployment
Docker - Demo on PHP Application deployment
 
Kubernetes for the PHP developer
Kubernetes for the PHP developerKubernetes for the PHP developer
Kubernetes for the PHP developer
 
PVS-Studio in the Clouds: Travis CI
PVS-Studio in the Clouds: Travis CIPVS-Studio in the Clouds: Travis CI
PVS-Studio in the Clouds: Travis CI
 
Uyuni, the solution to manage your Linux infrastructure
Uyuni, the solution to manage your Linux infrastructureUyuni, the solution to manage your Linux infrastructure
Uyuni, the solution to manage your Linux infrastructure
 
Deploying Symfony2 app with Ansible
Deploying Symfony2 app with AnsibleDeploying Symfony2 app with Ansible
Deploying Symfony2 app with Ansible
 
E D - Environmental Dependencies in Python
E D - Environmental Dependencies in PythonE D - Environmental Dependencies in Python
E D - Environmental Dependencies in Python
 
How to manage Azure with open source
How to manage Azure with open sourceHow to manage Azure with open source
How to manage Azure with open source
 
How to manage Microsoft Azure with open source
How to manage Microsoft Azure with open sourceHow to manage Microsoft Azure with open source
How to manage Microsoft Azure with open source
 
Introduction to Docker
Introduction to DockerIntroduction to Docker
Introduction to Docker
 
Docker-v3.pdf
Docker-v3.pdfDocker-v3.pdf
Docker-v3.pdf
 
Chicago Docker Meetup Presentation - Mediafly
Chicago Docker Meetup Presentation - MediaflyChicago Docker Meetup Presentation - Mediafly
Chicago Docker Meetup Presentation - Mediafly
 

Recently uploaded

JustNaik Solution Deck (stage bus sector)
JustNaik Solution Deck (stage bus sector)JustNaik Solution Deck (stage bus sector)
JustNaik Solution Deck (stage bus sector)
Max Lee
 
AI/ML Infra Meetup | Improve Speed and GPU Utilization for Model Training & S...
AI/ML Infra Meetup | Improve Speed and GPU Utilization for Model Training & S...AI/ML Infra Meetup | Improve Speed and GPU Utilization for Model Training & S...
AI/ML Infra Meetup | Improve Speed and GPU Utilization for Model Training & S...
Alluxio, Inc.
 

Recently uploaded (20)

JustNaik Solution Deck (stage bus sector)
JustNaik Solution Deck (stage bus sector)JustNaik Solution Deck (stage bus sector)
JustNaik Solution Deck (stage bus sector)
 
AI/ML Infra Meetup | Improve Speed and GPU Utilization for Model Training & S...
AI/ML Infra Meetup | Improve Speed and GPU Utilization for Model Training & S...AI/ML Infra Meetup | Improve Speed and GPU Utilization for Model Training & S...
AI/ML Infra Meetup | Improve Speed and GPU Utilization for Model Training & S...
 
A Python-based approach to data loading in TM1 - Using Airflow as an ETL for TM1
A Python-based approach to data loading in TM1 - Using Airflow as an ETL for TM1A Python-based approach to data loading in TM1 - Using Airflow as an ETL for TM1
A Python-based approach to data loading in TM1 - Using Airflow as an ETL for TM1
 
Agnieszka Andrzejewska - BIM School Course in Kraków
Agnieszka Andrzejewska - BIM School Course in KrakówAgnieszka Andrzejewska - BIM School Course in Kraków
Agnieszka Andrzejewska - BIM School Course in Kraków
 
iGaming Platform & Lottery Solutions by Skilrock
iGaming Platform & Lottery Solutions by SkilrockiGaming Platform & Lottery Solutions by Skilrock
iGaming Platform & Lottery Solutions by Skilrock
 
A Comprehensive Appium Guide for Hybrid App Automation Testing.pdf
A Comprehensive Appium Guide for Hybrid App Automation Testing.pdfA Comprehensive Appium Guide for Hybrid App Automation Testing.pdf
A Comprehensive Appium Guide for Hybrid App Automation Testing.pdf
 
Abortion ^Clinic ^%[+971588192166''] Abortion Pill Al Ain (?@?) Abortion Pill...
Abortion ^Clinic ^%[+971588192166''] Abortion Pill Al Ain (?@?) Abortion Pill...Abortion ^Clinic ^%[+971588192166''] Abortion Pill Al Ain (?@?) Abortion Pill...
Abortion ^Clinic ^%[+971588192166''] Abortion Pill Al Ain (?@?) Abortion Pill...
 
APVP,apvp apvp High quality supplier safe spot transport, 98% purity
APVP,apvp apvp High quality supplier safe spot transport, 98% purityAPVP,apvp apvp High quality supplier safe spot transport, 98% purity
APVP,apvp apvp High quality supplier safe spot transport, 98% purity
 
Advanced Flow Concepts Every Developer Should Know
Advanced Flow Concepts Every Developer Should KnowAdvanced Flow Concepts Every Developer Should Know
Advanced Flow Concepts Every Developer Should Know
 
Secure Software Ecosystem Teqnation 2024
Secure Software Ecosystem Teqnation 2024Secure Software Ecosystem Teqnation 2024
Secure Software Ecosystem Teqnation 2024
 
How Does XfilesPro Ensure Security While Sharing Documents in Salesforce?
How Does XfilesPro Ensure Security While Sharing Documents in Salesforce?How Does XfilesPro Ensure Security While Sharing Documents in Salesforce?
How Does XfilesPro Ensure Security While Sharing Documents in Salesforce?
 
Microsoft 365 Copilot; An AI tool changing the world of work _PDF.pdf
Microsoft 365 Copilot; An AI tool changing the world of work _PDF.pdfMicrosoft 365 Copilot; An AI tool changing the world of work _PDF.pdf
Microsoft 365 Copilot; An AI tool changing the world of work _PDF.pdf
 
IT Software Development Resume, Vaibhav jha 2024
IT Software Development Resume, Vaibhav jha 2024IT Software Development Resume, Vaibhav jha 2024
IT Software Development Resume, Vaibhav jha 2024
 
How to install and activate eGrabber JobGrabber
How to install and activate eGrabber JobGrabberHow to install and activate eGrabber JobGrabber
How to install and activate eGrabber JobGrabber
 
Facemoji Keyboard released its 2023 State of Emoji report, outlining the most...
Facemoji Keyboard released its 2023 State of Emoji report, outlining the most...Facemoji Keyboard released its 2023 State of Emoji report, outlining the most...
Facemoji Keyboard released its 2023 State of Emoji report, outlining the most...
 
Entropy, Software Quality, and Innovation (presented at Princeton Plasma Phys...
Entropy, Software Quality, and Innovation (presented at Princeton Plasma Phys...Entropy, Software Quality, and Innovation (presented at Princeton Plasma Phys...
Entropy, Software Quality, and Innovation (presented at Princeton Plasma Phys...
 
TROUBLESHOOTING 9 TYPES OF OUTOFMEMORYERROR
TROUBLESHOOTING 9 TYPES OF OUTOFMEMORYERRORTROUBLESHOOTING 9 TYPES OF OUTOFMEMORYERROR
TROUBLESHOOTING 9 TYPES OF OUTOFMEMORYERROR
 
Designing for Privacy in Amazon Web Services
Designing for Privacy in Amazon Web ServicesDesigning for Privacy in Amazon Web Services
Designing for Privacy in Amazon Web Services
 
A Guideline to Gorgias to to Re:amaze Data Migration
A Guideline to Gorgias to to Re:amaze Data MigrationA Guideline to Gorgias to to Re:amaze Data Migration
A Guideline to Gorgias to to Re:amaze Data Migration
 
WSO2Con2024 - WSO2's IAM Vision: Identity-Led Digital Transformation
WSO2Con2024 - WSO2's IAM Vision: Identity-Led Digital TransformationWSO2Con2024 - WSO2's IAM Vision: Identity-Led Digital Transformation
WSO2Con2024 - WSO2's IAM Vision: Identity-Led Digital Transformation
 

Uyuni Saltboot - automated image deployment and lifecycle with Uyuni