Uyuni is a configuration and infrastructure management tool that saves you time and headaches when you have to manage and update tens, hundreds or even thousands of machines.
Through the story of a fictional character "Jack", representing a systems administrator, this presentation shows how the rich feature set of Uyuni helps sysadmins in their day to day operations.
Watch the video on YouTube: https://youtu.be/wZxnmruV_Uo
4. Challenges of IT complexity
Configuration and patch management is typically an
afterthought usually after something has gone terribly wrong.
Day 0 Day 2
Provisioning Configuration Deployment Manage
Security &
Compliance
Health/Monitoring
Manual and
slow
Inconsistent
Poor
performance
Non-
compliance
Time/labor
intensive
Non-
repeatable
Manual patching/
updating
Irregular patch
cadence
Different patch levels
across systems
Repetitive
management tasks
Meet compliance and
security requirements
Vulnerabilities
Systems don't stay
compliant
Outdated systems at
risk
Risk of business
disruption
Downtime
5. Best-in-class open source infrastructure
management solution designed to help
your enterprise DevOps and IT Operations
teams to:
Optimize operations while reducing costs
Reduce complexity and regain control of IT
assets
Ensure compliance with internal security
policies and external regulations
What is Uyuni?
One solution to manage all
your Enterprise Linux infrastructure
9. — SLES client management
— System details (inventory)
10. Lorem ipsum dolor sit amet, consectetur adipiscing elit, sed do
eiusmod tempor incididunt ut labore et doloare magna aliqua.
Ut enim ad minim veniam, quis nostrud exercitation ullamco
laboris nisi ut aliquip ex ea commodo consequat.
— Lorem ipsum dolor sit amet, consectetur adipiscing elit, sed
do eiusmod tempor incididunt ut labore et dolore magna
aliqua. Ut enim.
– Lorem ipsum dolor sit amet.
— Organizations
— System groups
11. — On-premise
Physical or virtual workloads – including x86_64, aarch64, POWER or zSystems Mainframe
— Public Cloud
• Virtual host gatherers for AWS, Azure, GCE, VMware, Nutanix, Xen
• File-based virtual host gatherer for other clouds
— Private cloud
— Hybrid cloud
— Multi cloud
Manage everywhere with Uyuni
Uyuni works exactly the same everywhere
Powerful content control and system management, wherever deployment needs to be strategically done –
across hypervisors, clouds, or architectures:
17. — Multiple Uyuni Servers can be
managed from a single Hub node
— Scalability
— Offline operations
— Multi-tenancy with individual Uyuni
Servers for stronger separation
— Interserver sync
Multi-server architecture – Hub
20. Content Lifecycle Management
• Move packages across multiple stages
with UI-based CLM
• Customize and test packages before
updating production systems
• Control content with filters & projects
27. Salt automation
Class-leading configuration management and
infrastructure automation with Salt
• Backend based on Salt
• Automation, orchestration, API
• Automate Linux server provisioning,
configuration and patching
28. Ansible integration
Most popular automation framework in the
market
• Integrate your existing Ansible Control Nodes
or deploy new ones (openSUSE/SLES)
• Reuse your inventories and playbook
catalogs
• Enhancements coming! (playbooks with
forms, recurring state, reusable action chains)
29. — Calendar: contains events
— Schedule: maps events in the calendar to maintenance windows
— Schedule types:
• Single: contains a single schedule
• Multi: contains multiple schedules (one per event name, must
match the SUSE Manager schedule name)
— Outside the maintenance window, actions are not allowed (failed
automatically)
– COBIT BAI06: Managed IT Changes
– COBIT DSS04: Managed Continuity
TL;DR: Changes are only allowed during a limited period of time, pre-agreed by CAB
Maintenance windows
Maintenance windows avoid costly human mistakes
31. — Image building
— Virtualization
OS image building
— Autoinstallation
— Power Management
Create VM definition with kiwi and build OS images for reproducible client deployments
34. Compliance
Easily meet security and compliance
requirements:
• Schedule automatic, system wide scans
• Security patches
• CVE audit
• Check security compliance with OpenSCAP
• Run quick reports to provide accurate audit
data
• Subscription matching
35. Monitoring
Monitoring & alerting infrastructure with
Prometheus and Grafana
• Automated deployment of monitoring infrastructure
• Set up and manage the monitoring probes
• Customized dashboards
• Service Discovery: mechanism to automatically detect
potential monitoring targets in dynamic systems
• Prometheus Federation: Collecting monitoring data from
multiple Prometheus server
– Use cases: different products, multiple sites, separation of
concerns, etc
38. — API
— Maintenance windows
— Integration
— ITSM/IT Governance
Sample process: Change management
39. — Calendars and schedules can be created with any iCal-capable tool, e. g. Microsoft Outlook
or Google Calendar
— Typically you’ll want to automate:
1. Create calendar and schedule in ITSM tool and add to SUSE Manager
2. Connect your ITSM to Uyuni using API
3. When change request is approved by the CAB, change is sent to Uyuni
4. Uyuni schedules and executes
5. Collect results from ITSM tool via Uyuni API to report result and SLA
– Generate change requests in ITSM tool based on Uyuni events (e. g. CVE non-
compliance)
Call SUSE Consulting or partners to automate!
Connect Uyuni to your ITSM
41. Uyuni's feature set addresses use cases that range from small environments to very
large environments
SUSE Manager for everyone
SAP Retail
"Help, my SAP goes
HANA!"
"From Brick & Mortar to Bits &
Beacons"
25,000+
— Large scale:
• Tens of thousands of clients with 1 Server
• Hundreds of thousands with multi-Server
(Hub)
— Multi-tenant
42. Uyuni is the best tool to manage your SLES for SAP
workloads
• Content Lifecycle Management (“landscapes”)
• Save reboots with filters & live patching facilities
• Specific documentation: SAP QuickStart Guide
• Formulas:
o SAP HANA deployment Salt formula.
o SAP Netweaver deployment Salt formula.
o DRBD deployment Salt formula
o HA cluster salt deployment formula.
• Grafana dashboards
43. — Retail use case
— POS
— DHCP, DNS
— Kiwi OS images
— Salt formulas
— Formulas with forms
Uyuni for Retail
44. 44
Proactive approach to IT
infrastructure management
• Regain control of complex heterogenous Linux IT
environments
• Cost reduction platform due to skills/tools consolidation
• Improve IT staff productivity by automating Linux
management and provisioning tasks
• Reduce errors
• Reduce complexity through simplified management (WebUI,
CLI or API)
• Reduce downtime (even more with live patching + HA!)
• Enhanced security & compliance with automated
vulnerability management
46. github.com/uyuni-project
gitter.im/uyuni-project
@UyuniProject
Join Us at uyuni-project.org
Uyuni is the upstream project for SUSE Manager
• Community-supported
• Monthly meeting: Uyuni Community Hours
(last Friday of the month, 4pm CET)
• Runs on openSUSE Leap
• Monthly releases
• Rolling-release
• Product import using CLI tool (vs wizard in SUSE Manager)
• All translations enabled by default (even community ones)
48. License
This slide deck is licensed under the Creative Commons Attribution-ShareAlike 4.0 International license.
It can be shared and adapted for any purpose (even commercially) as long as Attribution is given and any
derivative work is distributed under the same license.
Details can be found at https://creativecommons.org/licenses/by-sa/4.0/
General Disclaimer
This document is not to be construed as a promise by any participating organisation to develop, deliver,
or market a product. It is not a commitment to deliver any material, code, or functionality, and should
not be relied upon in making purchasing decisions. openSUSE makes no representations or warranties
with respect to the contents of this document, and specifically disclaims any express or implied
warranties of merchantability or fitness for any particular purpose. The development, release, and timing
of features or functionality described for openSUSE products remains at the sole discretion of openSUSE.
Further, openSUSE reserves the right to revise this document and to make changes to its content, at any
time, without obligation to notify any person or entity of such revisions or changes. All openSUSE marks
referenced in this presentation are trademarks or registered trademarks of SUSE LLC, in the United
States and other countries. All third-party trademarks are the property of their respective owners.
Credits
Template & Design
Pau Garcia Quiles
pau.garcia@suse.com
Inspiration
openSUSE Design Team
http://opensuse.github.io/branding-guidelines/