Julian Dunn, profile picture
Uploaded byJulian Dunn
PPT, PDF9,843 views

Cooking with Chef on Windows

This document discusses using Chef to automate configuration on Microsoft Windows systems. It provides a timeline of Chef's support for Windows since 2011. It also discusses resources available in Chef for Windows including the registry_key, powershell_script, and batch resources. The document demonstrates automating the installation of a .NET application on Windows using Chef resources. It provides an overview of using Chef to provision infrastructure on Windows via Azure and discusses testing Chef cookbooks on Windows systems.

Embed presentation

Downloaded 88 times
Cooking with Chef on Microsoft Windows Julian C. Dunn Senior Consultant, Chef Software, Inc. jdunn@getchef.com
Chef and Windows Timeline • May 2011 – Knife plugin for Windows announced • Oct 2011 – PowerShell, IIS, SQL Server, and Windows cookbooks • Dec 2011 – Chef Client Installer MSI for Microsoft Windows • Feb 2012 – Integration of the registry_key resource into core Chef from the Windows cookbook • Aug 2013 – Chef 11.6.0 release. PowerShell and Batch scripting integrated into core Chef. Chef Client released as Windows service • Aug 2013 - PowerShell Desired State Configuration support announced (for delivery in 2014)
Challenges to Chef on Windows • No real package manager • COTS vendors don’t understand automation • UAC • WinRM Quotas • Win32 Redirector • Not all preferences/state stored in registry
Windows < 2012? • WinRM Memory Quota Hotfix required: • http://support.microsoft.com/kb/2842230
Automating a .NET App on Windows
Automating a .NET App on Windows • The app: nopCommerce Shopping Cart solution ( www.nopcommerce.com) • ASP.NET with SQL Server backend • Available through WebPI • WebPI install assumes a lot, however • Full-featured app suitable to show off Chef resources on Windows
Resources Automated in Demo • Installing Windows Features and Roles • IIS app pool • IIS site • IIS app • Registry settings • Deploying files onto the system • Unzipping files • Windows filesystem rights management
Provisioning with Chef • Azure plugin for Knife • Request new VM from Azure API • Bootstrap it over WinRM • Install and start Chef • Register with Chef server • Run through the “run list” • Instant infrastructure with one command
Video
The Recipe Code
nopCommerce Recipe Code: Install IIS, ASP.NET 4.5 ::Chef::Recipe.send(:include, Windows::Helper) windows_feature 'IIS-WebServerRole' do action :install end # Pre-requisite features for IIS-ASPNET45 that need to be installed first, in this order. %w{IIS-ISAPIFilter IIS-ISAPIExtensions NetFx3ServerFeatures NetFx4Extended-ASPNET45 IISNetFxExtensibility45}.each do |f| windows_feature f do action :install end end windows_feature 'IIS-ASPNET45' do action :install end service "iis" do service_name "W3SVC" action :nothing end include_recipe "iis::remove_default_site"
nopCommerce Recipe Code: Install nopCommerce windows_zipfile node['nopcommerce']['approot'] do source node['nopcommerce']['dist'] action :unzip not_if {::File.exists?(::File.join(node['nopcommerce']['approot'], "nopCommerce"))} end %w{App_Data bin Content ContentImages ContentImagesThumbs ContentImagesUploaded ContentfilesExportImport Plugins Pluginsbin}.each do |d| directory win_friendly_path(::File.join(node['nopcommerce']['approot'], 'nopCommerce', d)) do rights :modify, 'IIS_IUSRS' end end %w{Global.asax web.config}.each do |f| file win_friendly_path(::File.join(node['nopcommerce']['approot'], 'nopCommerce', f)) do rights :modify, 'IIS_IUSRS' end end
Set up IIS Pool, App, etc. iis_pool node['nopcommerce']['poolname'] do runtime_version "4.0" action :add end directory node['nopcommerce']['siteroot'] do rights :read, 'IIS_IUSRS' recursive true action :create end iis_site 'nopCommerce' do protocol :http port 80 path node['nopcommerce']['siteroot'] application_pool node['nopcommerce']['poolname'] action [:add,:start] end iis_app 'nopCommerce' do application_pool node['nopcommerce']['poolname'] path node['nopcommerce']['apppath'] physical_path "#{node['nopcommerce']['approot']}nopCommerce" action :add end
Other Code You Might Have Noticed system32_path = node['kernel']['machine'] == 'x86_64' ? 'C:WindowsSysnative' : 'C:WindowsSystem32' cookbook_file "#{system32_path}oemlogo.bmp" do source node['windowshacks']['oeminfo']['logofile'] rights :read, "Everyone" action :create end registry_key 'HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionOEMInformation' do values [{:name => 'Logo', :type => :string, :data => 'C:WindowsSystem32oemlogo.bmp'}, {:name => 'Manufacturer', :type => :string, :data => node['windowshacks']['oeminfo'] ['manufacturer']}, {:name => 'SupportHours', :type => :string, :data => node['windowshacks']['oeminfo'] ['supporthours']}, {:name => 'SupportPhone', :type => :string, :data => node['windowshacks']['oeminfo'] ['supportphone']}, {:name => 'SupportURL', :type => :string, :data => node['windowshacks']['oeminfo']['supporturl']}] action :create end
64
The Result
Overview of Chef Resources on Windows
Same as UNIX/Linux • file, remote_file, cookbook_file, template • directory, remote_directory • user, group • mount (can take CIFS paths) • env • service • execute • ruby_block • many others...
Unique to Windows • registry_key (new in Chef 11.0.0) • powershell_script (new in Chef 11.6.0) • batch (new in Chef 11.6.0) • Automatic architecture handling (:i386 vs. :x86_64) • Automatic Windows filesystem redirector handling (Wow64) • Long-term roadmap: move more resources to core and out of ‘windows’ cookbook
Windows-Only Cookbooks • By Chef: • 7-zip • iis • powershell • sql_server • webpi • windows • wix
Windows Community Cookbooks • ms_dotnet2 / 4 / 45 • windows_ad (by TAMU) • msoffice • azure
registry_key example # Set system’s proxy settings to be the same as used for Chef proxy = URI.parse(Chef::Config[:http_proxy]) registry_key 'HKCUSoftwareMicrosoftWindowsCurrentVersionInternet Settings' do values [{:name => 'ProxyEnable', :type => :reg_dword, :data => 1}, {:name => 'ProxyServer', :data => "#{proxy.host}:#{proxy.port}"}, {:name => 'ProxyOverride', :type => :reg_string, :data => '<local>'}] action :create end
powershell_script example powershell_script "rename hostname" do code <<-EOH $computer_name = Get-Content env:computername $new_name = 'test-hostname' $sysInfo = Get-WmiObject -Class Win32_ComputerSystem $sysInfo.Rename($new_name) EOH end
Registry Helpers • Resources like powershell_script are not idempotent by default • We provide some helpers for checking the registry: • registry_data_exists? • registry_get_subkeys • registry_get_values • registry_has_subkeys? • registry_key_exists? • registry_value_exists?
Version Helpers :windows_8_1? :windows_server_2012_r2? :windows_8? :windows_server_2012? etc. :marketing_name :cluster? :core? :datacenter? • Methods on Chef::ReservedNames::Win32
Example Usage require 'chef/win32/version' windows_version = Chef::ReservedNames::Win32::Version.new if (windows_version.windows_server_2008_r2? || windows_version.windows_7?) && windows_version.core? # Server 2008 R2 Core does not come with .NET or Powershell 2.0 enabled # ... install Powershell 2.0 here end • https://github.com/juliandunn/ms_dotnet2/blob/master/re
Special File/Directory Handling • Parameters that don’t make sense are ignored • DOMAINuser, DOMAINgroup work • Filesystem ACLs are different on Windows • mode parameter semantics • rights parameter only for Windows
The ‘windows’ Cookbook • The windows cookbook includes a number of resources and providers, and helper libraries. • See https://github.com/opscode-cookbooks/windows for a full list • Highlights: • windows_auto_run • windows_feature • windows_package • windows_path • windows_reboot • windows_zipfile • Other: windows_printer, windows_printer_port, windows_task
Windows Report Handlers • Windows cookbook: • WindowsRebootHandler • windows_reboot resource • windows::reboot_handler recipe • Eventlog cookbook: • Send Chef output to Windows Event Log
Desired State Configuration (DSC) •New in Windows 2012R2 / WMF4 •“Chef-like” declarative system •Compiles to intermediate format (MOF) •Provides reliable automation hooks into Windows
Potential DSC Integration dsc_resource 'IIS' do name 'Webserver' resource :component action :install end • 1:1 mapping DSC resources to Chef resources • Challenges: DSC transactional, Chef is not • Thoughts? See me after
Windows Roadmap 2014 • Moar resources in core chef-client • Package (e.g. msi), feature, reboot, etc. • PowerShell DSC resource integration • Easy WinRM setup, bootstrap • Cookbooks: WSUS, AD, Group Policy, etc. • Miscellaneus: Anonymous Resource RFC • http://tinyurl.com/anonymous-resource-rfc
Testing on Windows
As a Host • Berkshelf, Test-Kitchen, ChefSpec work on Windows • You need Git Bash or a UNIX-like environment
As a Guest • vagrant-windows • Monkeypatch to Vagrant to support WinRM • Works adequately, but fragile • Packer images to generate Windows VMs • https://github.com/misheska/basebox-packer • ServerSpec supports Windows, but limited assertions
Questions? • Much more than what’s shown here! • Questions? • Thank you! • E: jdunn@getchef.com • W: www.getchef.com • T: @julian_dunn • G: github.com/juliandunn
Cooking with Chef on Windows

More Related Content

PPTX
Cooking with Chef on Windows: 2015 Edition
byJulian Dunn
 
PPTX
Automating That "Other" OS
byJulian Dunn
 
PDF
Cooking on Windows without the Windows Cookbook
byChef Software, Inc.
 
PPTX
Opscode Webinar: Cooking with Chef on Microsoft Windows
byChef Software, Inc.
 
PDF
Tips and Tricks for Automating Windows with Chef
byChef Software, Inc.
 
PPTX
Configuration Management in a Containerized World
byJulian Dunn
 
PPTX
Chef and PowerShell Desired State Configuration
byJulian Dunn
 
PPTX
What Makes a Good Chef Cookbook? (May 2014 Edition)
byJulian Dunn
 
Cooking with Chef on Windows: 2015 Edition
byJulian Dunn
 
Automating That "Other" OS
byJulian Dunn
 
Cooking on Windows without the Windows Cookbook
byChef Software, Inc.
 
Opscode Webinar: Cooking with Chef on Microsoft Windows
byChef Software, Inc.
 
Tips and Tricks for Automating Windows with Chef
byChef Software, Inc.
 
Configuration Management in a Containerized World
byJulian Dunn
 
Chef and PowerShell Desired State Configuration
byJulian Dunn
 
What Makes a Good Chef Cookbook? (May 2014 Edition)
byJulian Dunn
 

What's hot

PPTX
Orchestration? You Don't Need Orchestration. What You Want is Choreography.
byJulian Dunn
 
PDF
Test-Driven Infrastructure with Chef
byMichael Lihs
 
PPTX
Infrastructure Automation with Chef & Ansible
bywajrcs
 
PPTX
Automated Deployments with Ansible
byMartin Etmajer
 
PDF
Chef Fundamentals Training Series Module 1: Overview of Chef
byChef Software, Inc.
 
PDF
Ansible Introduction
byRobert Reiz
 
PDF
Chef Fundamentals Training Series Module 2: Workstation Setup
byChef Software, Inc.
 
ODP
Introduction to Chef
byKnoldus Inc.
 
PDF
Server Installation and Configuration with Chef
byRaimonds Simanovskis
 
PDF
Chef vs Puppet vs Ansible vs SaltStack | Configuration Management Tools Compa...
byEdureka!
 
PPTX
Chef introduction
byFENG Zhichao
 
PDF
Community Cookbooks & further resources - Fundamentals Webinar Series Part 6
byChef
 
PDF
Ansible introduction - XX Betabeers Galicia
byJuan Diego Pereiro Arean
 
PDF
Learning chef
byJonathan Carrillo
 
PDF
Ansible new paradigms for orchestration
byPaolo Tonin
 
PPTX
Opscode Webinar: Managing Your VMware Infrastructure with Chef
byChef Software, Inc.
 
PPT
Chef, Devops, and You
byBryan Berry
 
PPTX
Powerhsell dsc for chef veterans
byDamien Caro
 
PDF
Play Framework: Intro & High-Level Overview
byJosh Padnick
 
PDF
The unintended benefits of Chef
byChef Software, Inc.
 
Orchestration? You Don't Need Orchestration. What You Want is Choreography.
byJulian Dunn
 
Test-Driven Infrastructure with Chef
byMichael Lihs
 
Infrastructure Automation with Chef & Ansible
bywajrcs
 
Automated Deployments with Ansible
byMartin Etmajer
 
Chef Fundamentals Training Series Module 1: Overview of Chef
byChef Software, Inc.
 
Ansible Introduction
byRobert Reiz
 
Chef Fundamentals Training Series Module 2: Workstation Setup
byChef Software, Inc.
 
Introduction to Chef
byKnoldus Inc.
 
Server Installation and Configuration with Chef
byRaimonds Simanovskis
 
Chef vs Puppet vs Ansible vs SaltStack | Configuration Management Tools Compa...
byEdureka!
 
Chef introduction
byFENG Zhichao
 
Community Cookbooks & further resources - Fundamentals Webinar Series Part 6
byChef
 
Ansible introduction - XX Betabeers Galicia
byJuan Diego Pereiro Arean
 
Learning chef
byJonathan Carrillo
 
Ansible new paradigms for orchestration
byPaolo Tonin
 
Opscode Webinar: Managing Your VMware Infrastructure with Chef
byChef Software, Inc.
 
Chef, Devops, and You
byBryan Berry
 
Powerhsell dsc for chef veterans
byDamien Caro
 
Play Framework: Intro & High-Level Overview
byJosh Padnick
 
The unintended benefits of Chef
byChef Software, Inc.
 

Similar to Cooking with Chef on Windows

PPTX
Sim a Microsoft Utiliza OpenSource em DevOps!
byVinícius Batista de Souza
 
PDF
chef loves windows
byMat Schaffer
 
PPTX
Sim, a Microsoft usa Open Source em DevOps
byDanilo Bordini
 
PPTX
IIS Cookbook
byDaniel Sablosky
 
PDF
Cooking Up Windows with Chef Automate
byMatt Ray
 
PDF
Chef Automate - Azure Sydney User Group
byMatt Ray
 
PDF
Introduction to Cooking with Chef
byJohn Osborne
 
PDF
IT Automation with Chef
byAnuchit Chalothorn
 
PDF
DevOps and Windows
byTodd Pigram
 
PDF
DOO-009_Powering High Velocity Development for your Infrastructure
bydecode2016
 
PPTX
Azure handsonlab
byChef
 
PDF
Chef 11 Preview/Chef for OpenStack
byMatt Ray
 
PPTX
Chef at EIS
bycarpnick
 
PPTX
Chef onlinuxonpower
byMoya Brannan
 
PDF
Testing Your Automation Code (Vagrant Version)
byMischa Taylor
 
PDF
Cookbook Reusability @ Chef Community summit 2014
bySean OMeara
 
PDF
Ignite Talk on Chef
byBob Nowadly
 
PDF
Chef at WebMD
byadamleff
 
PDF
What is Chef and how we use it at tripsta
byGiedrius Rimkus
 
PDF
Philly security shell meetup
byNicole Johnson
 
Sim a Microsoft Utiliza OpenSource em DevOps!
byVinícius Batista de Souza
 
chef loves windows
byMat Schaffer
 
Sim, a Microsoft usa Open Source em DevOps
byDanilo Bordini
 
IIS Cookbook
byDaniel Sablosky
 
Cooking Up Windows with Chef Automate
byMatt Ray
 
Chef Automate - Azure Sydney User Group
byMatt Ray
 
Introduction to Cooking with Chef
byJohn Osborne
 
IT Automation with Chef
byAnuchit Chalothorn
 
DevOps and Windows
byTodd Pigram
 
DOO-009_Powering High Velocity Development for your Infrastructure
bydecode2016
 
Azure handsonlab
byChef
 
Chef 11 Preview/Chef for OpenStack
byMatt Ray
 
Chef at EIS
bycarpnick
 
Chef onlinuxonpower
byMoya Brannan
 
Testing Your Automation Code (Vagrant Version)
byMischa Taylor
 
Cookbook Reusability @ Chef Community summit 2014
bySean OMeara
 
Ignite Talk on Chef
byBob Nowadly
 
Chef at WebMD
byadamleff
 
What is Chef and how we use it at tripsta
byGiedrius Rimkus
 
Philly security shell meetup
byNicole Johnson
 

More from Julian Dunn

PPTX
Technical Careers Beyond DevOps
byJulian Dunn
 
PPTX
Pull, Don't Push! Sensu Summit 2018 Talk
byJulian Dunn
 
PPTX
Now That I Have Choreography, What Do I Do With It?
byJulian Dunn
 
PPTX
Distributed systems are hard; distributed systems of people are harder
byJulian Dunn
 
PPTX
Chef on AIX
byJulian Dunn
 
PPTX
Chef-NYC Announcements July 2014
byJulian Dunn
 
PPTX
Chef NYC Users' Group - Announcements for June 2014
byJulian Dunn
 
PPTX
Improving Your Mac Productivity
byJulian Dunn
 
PPTX
Chef Cookbook Governance BoF at ChefConf
byJulian Dunn
 
PPT
What Makes a Good Cookbook?
byJulian Dunn
 
PPT
Configuration Management Isn't Everything
byJulian Dunn
 
PDF
An Introduction to DevOps with Chef
byJulian Dunn
 
PDF
Chef Cookbook Testing and Continuous Integration
byJulian Dunn
 
PDF
ChefConf 2013: Beginner Chef Antipatterns
byJulian Dunn
 
PPTX
Chef Workflow Strategies at SecondMarket
byJulian Dunn
 
PDF
What Your CDN Won't Tell You: Optimizing a News Website for Speed and Stability
byJulian Dunn
 
KEY
An Introduction to Shef, the Chef Shell
byJulian Dunn
 
Technical Careers Beyond DevOps
byJulian Dunn
 
Pull, Don't Push! Sensu Summit 2018 Talk
byJulian Dunn
 
Now That I Have Choreography, What Do I Do With It?
byJulian Dunn
 
Distributed systems are hard; distributed systems of people are harder
byJulian Dunn
 
Chef on AIX
byJulian Dunn
 
Chef-NYC Announcements July 2014
byJulian Dunn
 
Chef NYC Users' Group - Announcements for June 2014
byJulian Dunn
 
Improving Your Mac Productivity
byJulian Dunn
 
Chef Cookbook Governance BoF at ChefConf
byJulian Dunn
 
What Makes a Good Cookbook?
byJulian Dunn
 
Configuration Management Isn't Everything
byJulian Dunn
 
An Introduction to DevOps with Chef
byJulian Dunn
 
Chef Cookbook Testing and Continuous Integration
byJulian Dunn
 
ChefConf 2013: Beginner Chef Antipatterns
byJulian Dunn
 
Chef Workflow Strategies at SecondMarket
byJulian Dunn
 
What Your CDN Won't Tell You: Optimizing a News Website for Speed and Stability
byJulian Dunn
 
An Introduction to Shef, the Chef Shell
byJulian Dunn
 

Recently uploaded

PPTX
Staffing Board - MICU1111111111111111111
byaustinpuckett2808
 
PPTX
Presentation based on Dr Jibran Video .pptx
byayesha2014arif
 
PDF
Chapter _4_Shaft Design_Key_Bearing_M_E_Design.pdf
bymoamenelbehery99
 
PDF
12 Mobile App UI:UX Design Best Practices Updated 2025.pdf
byDesign Studio UI UX
 
PPTX
Chapter4_Initiation_of_Sediment_Motion_v2[1].pptx
byBedassaDessalegn3
 
PPTX
NETWORKING SECURITY PRESENTATION FROM ALI).pptx
byAliRaza265839
 
PDF
Designing_the_AI_Cosmos_with_Indian_Values.pdf
byPuneet Arora
 
PPTX
Become a Professional UI/UX Designer by Learning How to Create Beautiful, Use...
bykandi4191
 
PDF
[BROCHURE] Italy Tour Project | @SlideON
bySlideON
 
PPTX
Lectwwwwwwwwwwwwwwwwwwwwwwwwwwwwwwwwwwure 8.pptx
byscrollinside07
 
PDF
Creating Magical CSS-Only Image Tilt Effects No JavaScript Required.pdf
byKinetools
 
PPTX
Artificial Intelligence basic notes for engineering.pptx
byKiranG764628
 
PPTX
Presentation - The First Christmas Story.pptx
byyunilyngallardo1
 
PPTX
CH 12 FASHION DESIGN AND MERCHANDIZING.pptx
bysunishining31
 
PDF
Criminal record certificate: no registration - College graduation Certified b...
byAstrid Gerhard
 
PPTX
solar system desing for multi level module
bytalhapaki1
 
PDF
Advanced Computational Intelligence: An International Journal (ACII)
byaciijournal
 
PPTX
aaabbbcccdddeeeefffggghhcute kitties.pptx
bySyedImtiyazAhmed2
 
PPTX
THEORY OF ARCHITECTURE - LECTURE NOTES - SYMBOLISM
bykanakatharak1
 
PPTX
Blue and Orange Colorful Playful Stop Bullying Campaign Presentation.pptx
byyunilyngallardo1
 
Staffing Board - MICU1111111111111111111
byaustinpuckett2808
 
Presentation based on Dr Jibran Video .pptx
byayesha2014arif
 
Chapter _4_Shaft Design_Key_Bearing_M_E_Design.pdf
bymoamenelbehery99
 
12 Mobile App UI:UX Design Best Practices Updated 2025.pdf
byDesign Studio UI UX
 
Chapter4_Initiation_of_Sediment_Motion_v2[1].pptx
byBedassaDessalegn3
 
NETWORKING SECURITY PRESENTATION FROM ALI).pptx
byAliRaza265839
 
Designing_the_AI_Cosmos_with_Indian_Values.pdf
byPuneet Arora
 
Become a Professional UI/UX Designer by Learning How to Create Beautiful, Use...
bykandi4191
 
[BROCHURE] Italy Tour Project | @SlideON
bySlideON
 
Lectwwwwwwwwwwwwwwwwwwwwwwwwwwwwwwwwwwure 8.pptx
byscrollinside07
 
Creating Magical CSS-Only Image Tilt Effects No JavaScript Required.pdf
byKinetools
 
Artificial Intelligence basic notes for engineering.pptx
byKiranG764628
 
Presentation - The First Christmas Story.pptx
byyunilyngallardo1
 
CH 12 FASHION DESIGN AND MERCHANDIZING.pptx
bysunishining31
 
Criminal record certificate: no registration - College graduation Certified b...
byAstrid Gerhard
 
solar system desing for multi level module
bytalhapaki1
 
Advanced Computational Intelligence: An International Journal (ACII)
byaciijournal
 
aaabbbcccdddeeeefffggghhcute kitties.pptx
bySyedImtiyazAhmed2
 
THEORY OF ARCHITECTURE - LECTURE NOTES - SYMBOLISM
bykanakatharak1
 
Blue and Orange Colorful Playful Stop Bullying Campaign Presentation.pptx
byyunilyngallardo1
 

Cooking with Chef on Windows

  • 1.
    Cooking with Chefon Microsoft Windows Julian C. Dunn Senior Consultant, Chef Software, Inc. jdunn@getchef.com
  • 2.
    Chef and WindowsTimeline • May 2011 – Knife plugin for Windows announced • Oct 2011 – PowerShell, IIS, SQL Server, and Windows cookbooks • Dec 2011 – Chef Client Installer MSI for Microsoft Windows • Feb 2012 – Integration of the registry_key resource into core Chef from the Windows cookbook • Aug 2013 – Chef 11.6.0 release. PowerShell and Batch scripting integrated into core Chef. Chef Client released as Windows service • Aug 2013 - PowerShell Desired State Configuration support announced (for delivery in 2014)
  • 3.
    Challenges to Chefon Windows • No real package manager • COTS vendors don’t understand automation • UAC • WinRM Quotas • Win32 Redirector • Not all preferences/state stored in registry
  • 4.
    Windows < 2012? •WinRM Memory Quota Hotfix required: • http://support.microsoft.com/kb/2842230
  • 5.
    Automating a .NETApp on Windows
  • 6.
    Automating a .NETApp on Windows • The app: nopCommerce Shopping Cart solution ( www.nopcommerce.com) • ASP.NET with SQL Server backend • Available through WebPI • WebPI install assumes a lot, however • Full-featured app suitable to show off Chef resources on Windows
  • 7.
    Resources Automated inDemo • Installing Windows Features and Roles • IIS app pool • IIS site • IIS app • Registry settings • Deploying files onto the system • Unzipping files • Windows filesystem rights management
  • 8.
    Provisioning with Chef •Azure plugin for Knife • Request new VM from Azure API • Bootstrap it over WinRM • Install and start Chef • Register with Chef server • Run through the “run list” • Instant infrastructure with one command
  • 9.
  • 10.
  • 11.
    nopCommerce Recipe Code:Install IIS, ASP.NET 4.5 ::Chef::Recipe.send(:include, Windows::Helper) windows_feature 'IIS-WebServerRole' do action :install end # Pre-requisite features for IIS-ASPNET45 that need to be installed first, in this order. %w{IIS-ISAPIFilter IIS-ISAPIExtensions NetFx3ServerFeatures NetFx4Extended-ASPNET45 IISNetFxExtensibility45}.each do |f| windows_feature f do action :install end end windows_feature 'IIS-ASPNET45' do action :install end service "iis" do service_name "W3SVC" action :nothing end include_recipe "iis::remove_default_site"
  • 12.
    nopCommerce Recipe Code:Install nopCommerce windows_zipfile node['nopcommerce']['approot'] do source node['nopcommerce']['dist'] action :unzip not_if {::File.exists?(::File.join(node['nopcommerce']['approot'], "nopCommerce"))} end %w{App_Data bin Content ContentImages ContentImagesThumbs ContentImagesUploaded ContentfilesExportImport Plugins Pluginsbin}.each do |d| directory win_friendly_path(::File.join(node['nopcommerce']['approot'], 'nopCommerce', d)) do rights :modify, 'IIS_IUSRS' end end %w{Global.asax web.config}.each do |f| file win_friendly_path(::File.join(node['nopcommerce']['approot'], 'nopCommerce', f)) do rights :modify, 'IIS_IUSRS' end end
  • 13.
    Set up IISPool, App, etc. iis_pool node['nopcommerce']['poolname'] do runtime_version "4.0" action :add end directory node['nopcommerce']['siteroot'] do rights :read, 'IIS_IUSRS' recursive true action :create end iis_site 'nopCommerce' do protocol :http port 80 path node['nopcommerce']['siteroot'] application_pool node['nopcommerce']['poolname'] action [:add,:start] end iis_app 'nopCommerce' do application_pool node['nopcommerce']['poolname'] path node['nopcommerce']['apppath'] physical_path "#{node['nopcommerce']['approot']}nopCommerce" action :add end
  • 14.
    Other Code YouMight Have Noticed system32_path = node['kernel']['machine'] == 'x86_64' ? 'C:WindowsSysnative' : 'C:WindowsSystem32' cookbook_file "#{system32_path}oemlogo.bmp" do source node['windowshacks']['oeminfo']['logofile'] rights :read, "Everyone" action :create end registry_key 'HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionOEMInformation' do values [{:name => 'Logo', :type => :string, :data => 'C:WindowsSystem32oemlogo.bmp'}, {:name => 'Manufacturer', :type => :string, :data => node['windowshacks']['oeminfo'] ['manufacturer']}, {:name => 'SupportHours', :type => :string, :data => node['windowshacks']['oeminfo'] ['supporthours']}, {:name => 'SupportPhone', :type => :string, :data => node['windowshacks']['oeminfo'] ['supportphone']}, {:name => 'SupportURL', :type => :string, :data => node['windowshacks']['oeminfo']['supporturl']}] action :create end
  • 15.
  • 16.
  • 17.
  • 18.
    Same as UNIX/Linux •file, remote_file, cookbook_file, template • directory, remote_directory • user, group • mount (can take CIFS paths) • env • service • execute • ruby_block • many others...
  • 19.
    Unique to Windows •registry_key (new in Chef 11.0.0) • powershell_script (new in Chef 11.6.0) • batch (new in Chef 11.6.0) • Automatic architecture handling (:i386 vs. :x86_64) • Automatic Windows filesystem redirector handling (Wow64) • Long-term roadmap: move more resources to core and out of ‘windows’ cookbook
  • 20.
    Windows-Only Cookbooks • ByChef: • 7-zip • iis • powershell • sql_server • webpi • windows • wix
  • 21.
    Windows Community Cookbooks •ms_dotnet2 / 4 / 45 • windows_ad (by TAMU) • msoffice • azure
  • 22.
    registry_key example # Setsystem’s proxy settings to be the same as used for Chef proxy = URI.parse(Chef::Config[:http_proxy]) registry_key 'HKCUSoftwareMicrosoftWindowsCurrentVersionInternet Settings' do values [{:name => 'ProxyEnable', :type => :reg_dword, :data => 1}, {:name => 'ProxyServer', :data => "#{proxy.host}:#{proxy.port}"}, {:name => 'ProxyOverride', :type => :reg_string, :data => '<local>'}] action :create end
  • 23.
    powershell_script example powershell_script "renamehostname" do code <<-EOH $computer_name = Get-Content env:computername $new_name = 'test-hostname' $sysInfo = Get-WmiObject -Class Win32_ComputerSystem $sysInfo.Rename($new_name) EOH end
  • 24.
    Registry Helpers • Resourceslike powershell_script are not idempotent by default • We provide some helpers for checking the registry: • registry_data_exists? • registry_get_subkeys • registry_get_values • registry_has_subkeys? • registry_key_exists? • registry_value_exists?
  • 25.
  • 26.
    Example Usage require 'chef/win32/version' windows_version= Chef::ReservedNames::Win32::Version.new if (windows_version.windows_server_2008_r2? || windows_version.windows_7?) && windows_version.core? # Server 2008 R2 Core does not come with .NET or Powershell 2.0 enabled # ... install Powershell 2.0 here end • https://github.com/juliandunn/ms_dotnet2/blob/master/re
  • 27.
    Special File/Directory Handling •Parameters that don’t make sense are ignored • DOMAINuser, DOMAINgroup work • Filesystem ACLs are different on Windows • mode parameter semantics • rights parameter only for Windows
  • 28.
    The ‘windows’ Cookbook •The windows cookbook includes a number of resources and providers, and helper libraries. • See https://github.com/opscode-cookbooks/windows for a full list • Highlights: • windows_auto_run • windows_feature • windows_package • windows_path • windows_reboot • windows_zipfile • Other: windows_printer, windows_printer_port, windows_task
  • 29.
    Windows Report Handlers •Windows cookbook: • WindowsRebootHandler • windows_reboot resource • windows::reboot_handler recipe • Eventlog cookbook: • Send Chef output to Windows Event Log
  • 30.
    Desired State Configuration(DSC) •New in Windows 2012R2 / WMF4 •“Chef-like” declarative system •Compiles to intermediate format (MOF) •Provides reliable automation hooks into Windows
  • 31.
    Potential DSC Integration dsc_resource'IIS' do name 'Webserver' resource :component action :install end • 1:1 mapping DSC resources to Chef resources • Challenges: DSC transactional, Chef is not • Thoughts? See me after
  • 32.
    Windows Roadmap 2014 •Moar resources in core chef-client • Package (e.g. msi), feature, reboot, etc. • PowerShell DSC resource integration • Easy WinRM setup, bootstrap • Cookbooks: WSUS, AD, Group Policy, etc. • Miscellaneus: Anonymous Resource RFC • http://tinyurl.com/anonymous-resource-rfc
  • 33.
  • 34.
    As a Host •Berkshelf, Test-Kitchen, ChefSpec work on Windows • You need Git Bash or a UNIX-like environment
  • 35.
    As a Guest •vagrant-windows • Monkeypatch to Vagrant to support WinRM • Works adequately, but fragile • Packer images to generate Windows VMs • https://github.com/misheska/basebox-packer • ServerSpec supports Windows, but limited assertions
  • 36.
    Questions? • Much morethan what’s shown here! • Questions? • Thank you! • E: jdunn@getchef.com • W: www.getchef.com • T: @julian_dunn • G: github.com/juliandunn

Editor's Notes

  • #4 We have many others.
  • #13 Here we set up IIS properly with all the extensions we need I’m not using the “iis” cookbook but we could have done that too, but I didn’t want webpi on my system.
  • #14 Download and unpack nopCommerce, set up its permissions properly
  • #16 On a 64-bit system, if addressed from a 32-bit process, System32 is redirected to Sysnative thanks to Microsoft’s wacky filesystem redirector, necessitating logic such as this. To which I have to make the following joke...
  • #19 Again, reiterate what a “resource” is in the context of Chef
  • #25 Not gonna show “batch” in this webinar, just mention that “batch” is for running CMD.EXE format scripts
  • #39 Tell them that anything I can’t answer, I’ll post answers on the blog. Also, feel free to ask questions through the blog and I’ll respond, or get someone at Opscode to respond.