Uyuni is a configuration and infrastructure management tool that saves you time and headaches when you have to manage and update tens, hundreds or even thousands of machines. Through the story of a fictional character "Jack", representing a systems administrator, this presentation shows how the rich feature set of Uyuni helps sysadmins in their day to day operations. Watch the video on YouTube: https://youtu.be/wZxnmruV_Uo

1. Pau Garcia Quiles
Product Owner &Technical Project Manager
SUSE Manager
pau.garcia@suse.com
Uyuni, the movie
18.06.2021

2. Tanja Batz Product Manager
2
Product Owner & Technical
Project Manager
Pau Garcia Quiles
Pau Garcia Quiles
Product Owner & Technical Project Manager
SUSE Manager
Former Debian Developer
Former KDE developer
Former... more things
FreeNode: pagarcia / pgquiles
Gitter: pagarcia
E-mail: pau.garcia@suse.com

3. Today's landscape
Enterprise Linux
adoption
50-96%
Enterprise cloud strategy
consisting multiple clouds
86% 80%
Companies that could have
prevented their breaches by
proper patching/configuration
IT complexity is
growing exponentially

4. Challenges of IT complexity
Configuration and patch management is typically an
afterthought usually after something has gone terribly wrong.
Day 0 Day 2
Provisioning Configuration Deployment Manage
Security &
Compliance
Health/Monitoring
Manual and
slow
Inconsistent
Poor
performance
Non-
compliance
Time/labor
intensive
Non-
repeatable
Manual patching/
updating
Irregular patch
cadence ​
Different patch levels
across systems
Repetitive
management tasks
Meet compliance and
security requirements
Vulnerabilities
Systems don't stay
compliant
Outdated systems at
risk
Risk of business
disruption
Downtime

5. Best-in-class open source infrastructure
management solution designed to help
your enterprise DevOps and IT Operations
teams to: ​
Optimize operations while reducing costs​
Reduce complexity and regain control of IT
assets​
Ensure compliance with internal security
policies and external regulations
What is Uyuni?
One solution to manage all
your Enterprise Linux infrastructure

6. Proxy
Server
Client
Uyuni architecture
SUSE Customer Center
Third Party Repository
Custom repository
Agentful (Salt minion) Agentless (Salt ssh)

7. Uyuni in your day to day

9. — SLES client management
— System details (inventory)

10. Lorem ipsum dolor sit amet, consectetur adipiscing elit, sed do
eiusmod tempor incididunt ut labore et doloare magna aliqua.
Ut enim ad minim veniam, quis nostrud exercitation ullamco
laboris nisi ut aliquip ex ea commodo consequat.
— Lorem ipsum dolor sit amet, consectetur adipiscing elit, sed
do eiusmod tempor incididunt ut labore et dolore magna
aliqua. Ut enim.
– Lorem ipsum dolor sit amet.
— Organizations
— System groups

11. — On-premise
 Physical or virtual workloads – including x86_64, aarch64, POWER or zSystems Mainframe
— Public Cloud
• Virtual host gatherers for AWS, Azure, GCE, VMware, Nutanix, Xen
• File-based virtual host gatherer for other clouds
— Private cloud
— Hybrid cloud
— Multi cloud
Manage everywhere with Uyuni
Uyuni works exactly the same everywhere
Powerful content control and system management, wherever deployment needs to be strategically done –
across hypervisors, clouds, or architectures:

12. Cloud-Native
Transformation
Deliver Applications
Faster
Run SAP
Solutions
Innovate at
the Edge
Succeed with Hybrid
Cloud Solutions
Achieve
Non-stop IT
Power AI
& Analytics
Guide the Data
Upsurge
Scale with
Containers
Trust Federal Solutions

13. — SLES 11, 12, 15
— RHEL (6,) 7, 8
• Oracle Linux (6,) 7, 8
• CentOS (6,) 7, 8
• SLES Expanded Support (6,) 7, 8
• AlmaLinux 8
• Soon: Rocky Linux 8
— Ubuntu 16.04, 18.04, 20.04
— Debian 9, 10
— Amazon Linux 2
— Alibaba Cloud Linux 2
— MicroFocus Open Enterprise Server 2018
— SLE Micro 5.0 (partial support)
Manage all your enterprise Linux
Expanded Support

14. — One solution to manage all
your Enterprise Linux infrastructure

15. — Scalability
— Asset management
— Subscription matching
— Subscription pinning
— Compliance
— Licensing

16. — Proxy
— Visualization
Uyuni
Server
Uyuni
Proxy
SLES
openSUSE
CentOS
SLES ES
...
Uyuni
Proxy
SLES for SAP
AlmaLinux
SLES for SAP
SLES for SAP
...
Uyuni
Proxy
Oracle Linux
Amazon Linux
Alibaba Linux
RHEL
...

17. — Multiple Uyuni Servers can be
managed from a single Hub node
— Scalability
— Offline operations
— Multi-tenancy with individual Uyuni
Servers for stronger separation
— Interserver sync
Multi-server architecture – Hub

18. — Patch
— Update
— Install

19. — Scheduling
— Remote commands
— Action chains
— Orchestration
— Salt

20. Content Lifecycle Management
• Move packages across multiple stages
with UI-based CLM
• Customize and test packages before
updating production systems
• Control content with filters & projects

21. — Recurring state
— Software channels
— Configuration channels

22. — SAP
— CLM
— SLO

23. — Live patching
— CLM
— SLA

24. — Provisioning
— Virtualization (KVM/Xen)
— HA virtualization cluster

25. — IPMI
— Redfish power management
— Autoinstallation

26. — API
— WebUI
— Command-line tools

27. Salt automation
Class-leading configuration management and
infrastructure automation with Salt
• Backend based on Salt
• Automation, orchestration, API
• Automate Linux server provisioning,
configuration and patching

28. Ansible integration
Most popular automation framework in the
market
• Integrate your existing Ansible Control Nodes
or deploy new ones (openSUSE/SLES)
• Reuse your inventories and playbook
catalogs
• Enhancements coming! (playbooks with
forms, recurring state, reusable action chains)

29. — Calendar: contains events
— Schedule: maps events in the calendar to maintenance windows
— Schedule types:
• Single: contains a single schedule
• Multi: contains multiple schedules (one per event name, must
match the SUSE Manager schedule name)
— Outside the maintenance window, actions are not allowed (failed
automatically)
– COBIT BAI06: Managed IT Changes
– COBIT DSS04: Managed Continuity
TL;DR: Changes are only allowed during a limited period of time, pre-agreed by CAB
Maintenance windows
Maintenance windows avoid costly human mistakes

30. Autoinstallation
— AutoYaST
— Kickstart
— Yomi
SLES
openSUSE
RHEL
AutoYaST
Kickstart
Yomi
Uyuni
Server

31. — Image building
— Virtualization
OS image building
— Autoinstallation
— Power Management
Create VM definition with kiwi and build OS images for reproducible client deployments

32. Configuration management:
— Files
— Channels
— Versions
cfg
+ =

33. — Container building — Container auditing

34. Compliance
Easily meet security and compliance
requirements:
• Schedule automatic, system wide scans
• Security patches
• CVE audit
• Check security compliance with OpenSCAP
• Run quick reports to provide accurate audit
data
• Subscription matching

35. Monitoring
Monitoring & alerting infrastructure with
Prometheus and Grafana
• Automated deployment of monitoring infrastructure
• Set up and manage the monitoring probes
• Customized dashboards
• Service Discovery: mechanism to automatically detect
potential monitoring targets in dynamic systems
• Prometheus Federation: Collecting monitoring data from
multiple Prometheus server
– Use cases: different products, multiple sites, separation of
concerns, etc

36. — Salt beacons — Salt reactors

37. — Scheduling
— Maintenance windows

38. — API
— Maintenance windows
— Integration
— ITSM/IT Governance
Sample process: Change management

39. — Calendars and schedules can be created with any iCal-capable tool, e. g. Microsoft Outlook
or Google Calendar
— Typically you’ll want to automate:
1. Create calendar and schedule in ITSM tool and add to SUSE Manager
2. Connect your ITSM to Uyuni using API
3. When change request is approved by the CAB, change is sent to Uyuni
4. Uyuni schedules and executes
5. Collect results from ITSM tool via Uyuni API to report result and SLA
– Generate change requests in ITSM tool based on Uyuni events (e. g. CVE non-
compliance)
Call SUSE Consulting or partners to automate!
Connect Uyuni to your ITSM

40. Manage all your Linux with Uyuni – everywhere

41. Uyuni's feature set addresses use cases that range from small environments to very
large environments
SUSE Manager for everyone
SAP Retail
"Help, my SAP goes
HANA!"
"From Brick & Mortar to Bits &
Beacons"
25,000+
— Large scale:
• Tens of thousands of clients with 1 Server
• Hundreds of thousands with multi-Server
(Hub)
— Multi-tenant

42. Uyuni is the best tool to manage your SLES for SAP
workloads
• Content Lifecycle Management (“landscapes”)
• Save reboots with filters & live patching facilities
• Specific documentation: SAP QuickStart Guide
• Formulas:
o SAP HANA deployment Salt formula.
o SAP Netweaver deployment Salt formula.
o DRBD deployment Salt formula
o HA cluster salt deployment formula.
• Grafana dashboards

43. — Retail use case
— POS
— DHCP, DNS
— Kiwi OS images
— Salt formulas
— Formulas with forms
Uyuni for Retail

44. 44
Proactive approach to IT
infrastructure management
• Regain control of complex heterogenous Linux IT
environments
• Cost reduction platform due to skills/tools consolidation
• Improve IT staff productivity by automating Linux
management and provisioning tasks
• Reduce errors
• Reduce complexity through simplified management (WebUI,
CLI or API)
• Reduce downtime (even more with live patching + HA!)
• Enhanced security & compliance with automated
vulnerability management

45. Anywhere Linux runs,
Uyuni manages
Copyright © SUSE 2020 45
The only Linux management tool that combines software
content lifecycle management, class-leading configuration
management and automation for all major Linux
distributions.
From Edge
to Datacenter
to Cloud

46. github.com/uyuni-project
gitter.im/uyuni-project
@UyuniProject
Join Us at uyuni-project.org
Uyuni is the upstream project for SUSE Manager
• Community-supported
• Monthly meeting: Uyuni Community Hours
(last Friday of the month, 4pm CET)
• Runs on openSUSE Leap
• Monthly releases
• Rolling-release
• Product import using CLI tool (vs wizard in SUSE Manager)
• All translations enabled by default (even community ones)

47. Live Demo

48. License
This slide deck is licensed under the Creative Commons Attribution-ShareAlike 4.0 International license.
It can be shared and adapted for any purpose (even commercially) as long as Attribution is given and any
derivative work is distributed under the same license.
Details can be found at https://creativecommons.org/licenses/by-sa/4.0/
General Disclaimer
This document is not to be construed as a promise by any participating organisation to develop, deliver,
or market a product. It is not a commitment to deliver any material, code, or functionality, and should
not be relied upon in making purchasing decisions. openSUSE makes no representations or warranties
with respect to the contents of this document, and specifically disclaims any express or implied
warranties of merchantability or fitness for any particular purpose. The development, release, and timing
of features or functionality described for openSUSE products remains at the sole discretion of openSUSE.
Further, openSUSE reserves the right to revise this document and to make changes to its content, at any
time, without obligation to notify any person or entity of such revisions or changes. All openSUSE marks
referenced in this presentation are trademarks or registered trademarks of SUSE LLC, in the United
States and other countries. All third-party trademarks are the property of their respective owners.
Credits
Template & Design
Pau Garcia Quiles
pau.garcia@suse.com
Inspiration
openSUSE Design Team
http://opensuse.github.io/branding-guidelines/