First session of Casual Config Fridays including an introduction to Hiera and a brief overview to the features of its latest version from the point of view of a service manager at CERN.
Apache Cassandra, part 3 – machinery, work with CassandraAndrey Lomakin
Aim of this presentation to provide enough information for enterprise architect to choose whether Cassandra will be project data store. Presentation describes each nuance of Cassandra architecture and ways to design data and work with them.
Always On, Multi-Site Design ConsiderationsJohn Martin
This slide deck covers some of the important considerations around building a Multi-Site Always On Availability Group or Failover Cluster Instance infrastructure.
Apache Cassandra, part 3 – machinery, work with CassandraAndrey Lomakin
Aim of this presentation to provide enough information for enterprise architect to choose whether Cassandra will be project data store. Presentation describes each nuance of Cassandra architecture and ways to design data and work with them.
Always On, Multi-Site Design ConsiderationsJohn Martin
This slide deck covers some of the important considerations around building a Multi-Site Always On Availability Group or Failover Cluster Instance infrastructure.
Terraform is an Infrastructure as Code tool for declaratively building and maintaining complex infrastructures on one or more cloud providers/services. But Terraform also supports over 80 non-infrastructure providers! In this demo-driven talk, will dive into the internals of Terraform and see how it works. We will show how Terraform can be used for non-infrastructure use cases by showing examples. We’ll also take a look at on how you can extend Terraform to manage anything with an API.
Speaker: Jacob Aae Mikkelsen
Once you have successfully developped your application in Grails, Ratpack or your other favorite framework, you would like to see it deployed as fast and painless as possible, right?
This talk will cover some of the supporting cast members of a succesful modern infrastructure, that developers can understand and use efficiently, and with good DevOps practices.
Key elements are
Docker
Infrastructure as Code
Container Orchestration
The demo-goods will hopefully be on our side, as this talk includes quite some live demos!
Apache Mesos abstracts CPU, memory, storage, and other compute resources away from machines (physical or virtual), enabling fault-tolerant and elastic distributed systems to easily be built and run effectively.
SaltConf14 - Ben Cane - Using SaltStack in High Availability EnvironmentsSaltStack
An overview on the benefits and best practices of using SaltStack for consistency and automation in highly available enterprise environments such as financial services.
Learn from Accubits Technologies
High Performance Computing (HPC) most generally refers to the practice of aggregating computing power in a way that delivers much higher performance than one could get out of a typical desktop computer or workstation in order to solve large problems in science, engineering, or business.
Introduction to automation in the cloud, why it's needed, what are the tools or ways of working, the processes, the best practises with some examples and takeaways.
Terraform is an Infrastructure as Code tool for declaratively building and maintaining complex infrastructures on one or more cloud providers/services. But Terraform also supports over 80 non-infrastructure providers! In this demo-driven talk, will dive into the internals of Terraform and see how it works. We will show how Terraform can be used for non-infrastructure use cases by showing examples. We’ll also take a look at on how you can extend Terraform to manage anything with an API.
Speaker: Jacob Aae Mikkelsen
Once you have successfully developped your application in Grails, Ratpack or your other favorite framework, you would like to see it deployed as fast and painless as possible, right?
This talk will cover some of the supporting cast members of a succesful modern infrastructure, that developers can understand and use efficiently, and with good DevOps practices.
Key elements are
Docker
Infrastructure as Code
Container Orchestration
The demo-goods will hopefully be on our side, as this talk includes quite some live demos!
Apache Mesos abstracts CPU, memory, storage, and other compute resources away from machines (physical or virtual), enabling fault-tolerant and elastic distributed systems to easily be built and run effectively.
SaltConf14 - Ben Cane - Using SaltStack in High Availability EnvironmentsSaltStack
An overview on the benefits and best practices of using SaltStack for consistency and automation in highly available enterprise environments such as financial services.
Learn from Accubits Technologies
High Performance Computing (HPC) most generally refers to the practice of aggregating computing power in a way that delivers much higher performance than one could get out of a typical desktop computer or workstation in order to solve large problems in science, engineering, or business.
Introduction to automation in the cloud, why it's needed, what are the tools or ways of working, the processes, the best practises with some examples and takeaways.
Listen up, developers. You are not special. Your infrastructure is not a beautiful and unique snowflake. You have the same tech debt as everyone else. This is a talk about a better way to build and manage infrastructure: Terraform Modules. It goes over how to build infrastructure as code, package that code into reusable modules, design clean and flexible APIs for those modules, write automated tests for the modules, and combine multiple modules into an end-to-end techs tack in minutes.
You can find the video here: https://www.youtube.com/watch?v=LVgP63BkhKQ
Apache Ambari at the Apache Big Data Conference in Miami on May 18, 2017
presented by Alejandro Fernandez
Using Apache Ambari for enterprises with Blueprints, Custom Services, Stack Advisor, Kerberos, Large Scale, Rolling/Express Upgrades, Alerts, Metrics, and Log Search.
Going beyond Code: Driving automation with data via HieraDylan Cochran
In February Puppet 4.9 was released to the world, and with it came Hiera v5, a rewrite of Hiera that brings new ways of building repeatable infrastructures. From in-module data and native merging, to writing your own backends, we’ll explore all the new features Hiera v5 gives you.
Going beyond Code: Driving automation with data via HieraOnyxPoint Inc
In February Puppet 4.9 was released to the world, and with it came Hiera v5, a rewrite of Hiera that brings new ways of building repeatable infrastructures. From in-module data and native merging, to writing your own backends, we’ll explore all the new features Hiera v5 gives you.
Learning Puppet is hard.
But: You can use Puppet by using YAML only.
In this talk I am going to explain the YAML/Hiera based node classification and the possibility to manage systems by using YAML only.
Bare Metal to OpenStack with Razor and ChefMatt Ray
Slides from the OpenStack Spring 2013 Summit workshop presented by Egle Sigler (@eglute) and Matt Ray (@mattray) from Rackspace and Opscode respectively. Please refer to http://anystacker.com/ for additional content.
Essentials of Automations: The Art of Triggers and Actions in FMESafe Software
In this second installment of our Essentials of Automations webinar series, we’ll explore the landscape of triggers and actions, guiding you through the nuances of authoring and adapting workspaces for seamless automations. Gain an understanding of the full spectrum of triggers and actions available in FME, empowering you to enhance your workspaces for efficient automation.
We’ll kick things off by showcasing the most commonly used event-based triggers, introducing you to various automation workflows like manual triggers, schedules, directory watchers, and more. Plus, see how these elements play out in real scenarios.
Whether you’re tweaking your current setup or building from the ground up, this session will arm you with the tools and insights needed to transform your FME usage into a powerhouse of productivity. Join us to discover effective strategies that simplify complex processes, enhancing your productivity and transforming your data management practices with FME. Let’s turn complexity into clarity and make your workspaces work wonders!
Alt. GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using ...James Anderson
Effective Application Security in Software Delivery lifecycle using Deployment Firewall and DBOM
The modern software delivery process (or the CI/CD process) includes many tools, distributed teams, open-source code, and cloud platforms. Constant focus on speed to release software to market, along with the traditional slow and manual security checks has caused gaps in continuous security as an important piece in the software supply chain. Today organizations feel more susceptible to external and internal cyber threats due to the vast attack surface in their applications supply chain and the lack of end-to-end governance and risk management.
The software team must secure its software delivery process to avoid vulnerability and security breaches. This needs to be achieved with existing tool chains and without extensive rework of the delivery processes. This talk will present strategies and techniques for providing visibility into the true risk of the existing vulnerabilities, preventing the introduction of security issues in the software, resolving vulnerabilities in production environments quickly, and capturing the deployment bill of materials (DBOM).
Speakers:
Bob Boule
Robert Boule is a technology enthusiast with PASSION for technology and making things work along with a knack for helping others understand how things work. He comes with around 20 years of solution engineering experience in application security, software continuous delivery, and SaaS platforms. He is known for his dynamic presentations in CI/CD and application security integrated in software delivery lifecycle.
Gopinath Rebala
Gopinath Rebala is the CTO of OpsMx, where he has overall responsibility for the machine learning and data processing architectures for Secure Software Delivery. Gopi also has a strong connection with our customers, leading design and architecture for strategic implementations. Gopi is a frequent speaker and well-known leader in continuous delivery and integrating security into software delivery.
Enhancing Performance with Globus and the Science DMZGlobus
ESnet has led the way in helping national facilities—and many other institutions in the research community—configure Science DMZs and troubleshoot network issues to maximize data transfer performance. In this talk we will present a summary of approaches and tips for getting the most out of your network infrastructure using Globus Connect Server.
In his public lecture, Christian Timmerer provides insights into the fascinating history of video streaming, starting from its humble beginnings before YouTube to the groundbreaking technologies that now dominate platforms like Netflix and ORF ON. Timmerer also presents provocative contributions of his own that have significantly influenced the industry. He concludes by looking at future challenges and invites the audience to join in a discussion.
Observability Concepts EVERY Developer Should Know -- DeveloperWeek Europe.pdfPaige Cruz
Monitoring and observability aren’t traditionally found in software curriculums and many of us cobble this knowledge together from whatever vendor or ecosystem we were first introduced to and whatever is a part of your current company’s observability stack.
While the dev and ops silo continues to crumble….many organizations still relegate monitoring & observability as the purview of ops, infra and SRE teams. This is a mistake - achieving a highly observable system requires collaboration up and down the stack.
I, a former op, would like to extend an invitation to all application developers to join the observability party will share these foundational concepts to build on:
Dev Dives: Train smarter, not harder – active learning and UiPath LLMs for do...UiPathCommunity
💥 Speed, accuracy, and scaling – discover the superpowers of GenAI in action with UiPath Document Understanding and Communications Mining™:
See how to accelerate model training and optimize model performance with active learning
Learn about the latest enhancements to out-of-the-box document processing – with little to no training required
Get an exclusive demo of the new family of UiPath LLMs – GenAI models specialized for processing different types of documents and messages
This is a hands-on session specifically designed for automation developers and AI enthusiasts seeking to enhance their knowledge in leveraging the latest intelligent document processing capabilities offered by UiPath.
Speakers:
👨🏫 Andras Palfi, Senior Product Manager, UiPath
👩🏫 Lenka Dulovicova, Product Program Manager, UiPath
Securing your Kubernetes cluster_ a step-by-step guide to success !KatiaHIMEUR1
Today, after several years of existence, an extremely active community and an ultra-dynamic ecosystem, Kubernetes has established itself as the de facto standard in container orchestration. Thanks to a wide range of managed services, it has never been so easy to set up a ready-to-use Kubernetes cluster.
However, this ease of use means that the subject of security in Kubernetes is often left for later, or even neglected. This exposes companies to significant risks.
In this talk, I'll show you step-by-step how to secure your Kubernetes cluster for greater peace of mind and reliability.
Smart TV Buyer Insights Survey 2024 by 91mobiles.pdf91mobiles
91mobiles recently conducted a Smart TV Buyer Insights Survey in which we asked over 3,000 respondents about the TV they own, aspects they look at on a new TV, and their TV buying preferences.
Climate Impact of Software Testing at Nordic Testing DaysKari Kakkonen
My slides at Nordic Testing Days 6.6.2024
Climate impact / sustainability of software testing discussed on the talk. ICT and testing must carry their part of global responsibility to help with the climat warming. We can minimize the carbon footprint but we can also have a carbon handprint, a positive impact on the climate. Quality characteristics can be added with sustainability, and then measured continuously. Test environments can be used less, and in smaller scale and on demand. Test techniques can be used in optimizing or minimizing number of tests. Test automation can be used to speed up testing.
A tale of scale & speed: How the US Navy is enabling software delivery from l...sonjaschweigert1
Rapid and secure feature delivery is a goal across every application team and every branch of the DoD. The Navy’s DevSecOps platform, Party Barge, has achieved:
- Reduction in onboarding time from 5 weeks to 1 day
- Improved developer experience and productivity through actionable findings and reduction of false positives
- Maintenance of superior security standards and inherent policy enforcement with Authorization to Operate (ATO)
Development teams can ship efficiently and ensure applications are cyber ready for Navy Authorizing Officials (AOs). In this webinar, Sigma Defense and Anchore will give attendees a look behind the scenes and demo secure pipeline automation and security artifacts that speed up application ATO and time to production.
We will cover:
- How to remove silos in DevSecOps
- How to build efficient development pipeline roles and component templates
- How to deliver security artifacts that matter for ATO’s (SBOMs, vulnerability reports, and policy evidence)
- How to streamline operations with automated policy checks on container images
Accelerate your Kubernetes clusters with Varnish CachingThijs Feryn
A presentation about the usage and availability of Varnish on Kubernetes. This talk explores the capabilities of Varnish caching and shows how to use the Varnish Helm chart to deploy it to Kubernetes.
This presentation was delivered at K8SUG Singapore. See https://feryn.eu/presentations/accelerate-your-kubernetes-clusters-with-varnish-caching-k8sug-singapore-28-2024 for more details.
DevOps and Testing slides at DASA ConnectKari Kakkonen
My and Rik Marselis slides at 30.5.2024 DASA Connect conference. We discuss about what is testing, then what is agile testing and finally what is Testing in DevOps. Finally we had lovely workshop with the participants trying to find out different ways to think about quality and testing in different parts of the DevOps infinity loop.
3. S M T W T F S
1 2 3 4 5 6
7 8 9 10 11 12 13
14 15 16 17 18 19 20
21 22 23 24 25 26 27
28 29 30 31
< October >
4. CONFIG TRAINING
A comprehensive introduction
to the Puppet infrastructure
Hostgroups
And we can keep specializing…
It’s everything about grouping
it-puppet-hostgroup-webstuff
webstuff/backendwebstuff/frontend
webstuff/frontend/atlas webstuff/frontend/cms
Welcome to the training
Why are we here?
Puppet infrastructure
Get to know the infrastructure and all the
components that allow us to offer
Configuration management at CERN.
High availability
As part of the training you’ll learn how to
define alias to ensure that at any moment
multiple machines can attend your users’
requests.
Handle secrets in your configuration
No one wants to share a password with people
who shouldn’t have access. Let’s use secrets!
Configure just once
Learning how to configure your services is as
important as defining configuration in a way that
you can replicate it easily across your machines.
Learn the mechanism to share code
Why spend time on tasks that other people in
the community have solved before?
Solve your questions
We’ll cover what we think is important for you to
know, but we are here to solve your questions.
Don’t hesitate to raise your hand if you have any!
Environments
Differences between them
10
production qa new
Production
Machines in this environment will
get all the config from the
master branch of the repositories
and is designed for production
machines that focus on stability.
QA
This environment is usually used
by a portion of the production
machines to test new shared
changes. All the code will come
from qa branches.
New
At any point you can create a
new environment to test
changes in a more isolated way.
4 1
5. Introduction to the basic concepts of Hiera, usage
examples and description of the priority chain
7. 07
Hiera 101
What it is and how it works
A key/value store abstraction based in YAML files
A key lookup resolution mechanism
A hierarchical data organization
A data composition mechanism (defaults,
overrides, merges…)
9. Understanding the hierarchy
The global layer from the most to the least specific
Fully qualified domain name
Data can be assigned to a
specific hostname
Subhostgroups
Searched from most to
least specific
Hostgroup and environment
Different data can be assigned to,
for example, production and qa
Hostgroup and operating system
Each hostgroup has hieradata
available for operating sytem
Toplevel hostgroup
Has the last lookup in
the hostgroup tree
10. 10
Environment
Data specific to the
Puppet environment
Operatingsystem
Global operating
system variables
Hardware vendor
Specific to the vendor (or maintainer)
of the hardware
Module
Data for the module
Common
Global data
Datacenter
Target the different
datacenters (i.e. meyrin)
11. Learning to fetch your data using automatic lookups,
useful functions and command line tools
12. 12
Getting your data
Two different lookup mechanisms
Automatic lookup
Puppet automatically looks for
class parameters values using the
fully qualified name when those are
not explicitly provided
Explicit lookup
Uses Hiera to retrieve the value for
a key, allowing data validation and
different strategies to define how to
fetch data
15. 15
Merging data
Four different merge behaviors
First
No merge. First found, first used
Unique (array merge)
Combines any number of array
and scalar values into an array
Hash
Combines keys and values of any
number of hashes to return a
merged hash
Deep
Similar to hash, but if the same key
exists in multiple source hashes,
Hiera recursively merges them
22. 23
Interpolating variables
Four different possible sources
Puppet variables
Most common way. Get’s the
value from a Puppet variable
Trusted hash
Accurate values extracted from
the node’s certificate
Facts hash
Contains all node’s facts.
Structured ones are shown up as a
nested structure
24. 24
Interpolating functions
Lookups and beyond
lookup
Looks up a key using Hiera, and
interpolates the values into a string
scope
An alternative way to interpolate a
variable. Not generally useful
literal
A way to write a literal percent
sign (%) without accidentally
interpolating something
alias
Looks up a key using Hiera, and
uses the value as a replacement
for the enclosing
27. 27
Global, environment and module
Three different layers of configuration
Global layer
Define all the levels of
the hierarchy
Environment layer
Merged with the global
layer in our deployment
Module layer
Allows to set defaults for a
module’s class parameters
28. 28
Implementing Hiera 5
The hiera.yaml format
Module level data is defined in a hiera.yaml file
Must include the version (v5)
The hierarchy key configures the data hierarchy
The defaults key define default values for the
backend and datadir keys
30. 30
Defining strategies
The lookup_options key
Any data source can set a lookup_options key
This key controls the merge behavior of other keys
Puppet lookups will first check for lookup_options
The lookup_options keys are merged by Puppet
using hash merge before deciding a merge behavior
34. 34
Some useful links
Click & Go
Migrating to Hiera 5
Best module to use us an example of best practices
Automatic class parameter lookup
Hiera documentation in configdocs
35. 35
And some more…
Again, Click & Go
Interesting talk on Hiera by Hendrik Lindberg
Further options for deep strategy behaviour
More information on interpolation
Deprecated functions and alternatives