Welcome!

@DevOpsSummit Authors: Zakia Bouachraoui, Yeshim Deniz, Elizabeth White, Pat Romanski, Liz McMillan

Related Topics: @DevOpsSummit, Linux Containers, Containers Expo Blog

@DevOpsSummit: Blog Feed Post

Rethinking Operations Automation | @DevOpsSummit #DevOps

The world of automated provisioning has come a long way in a short time

The world of automated provisioning has come a long way in a short time. From hand deploying everything from temporary VMs to complex clustered systems, we have reached the point where the entire operations stack can be provisioned with the click of a button – provided the infrastructure has been put together to do so.

This has the huge benefit of offering operations more time to work on projects that add value to the organization. That new system that marketing needs can now move forward because operations has the man-hours, for example. It also offers the surety that there isn’t some magical individual on staff who holds all the critical information about a system. By using DevOps principles, and keeping configuration and automation information in a version control system, the knowledge is preserved in the best possible form – scripts and configurations that actually work and can be examined/explored should the need arise. The corporate stability this offers is quantifiable, but normally there are human issues that keep us from delving too deeply into the cost/benefit scenario (let’s face it, all geeks – this author included – have some amount of ego, and saying “your knowledge will be replaced by a system” can be a touchy topic without delving into “…and we won’t have to have Don’s approval to get this done quickly!” type conversations.)

The thing is that when a market is rapidly and constantly evolving like the DevOps/Provisioning market is, we sometimes have to step back, take a breath, and look at where we are, and what’s to come. Part of this process involves each organization looking at the different branches in the marketplace and determining which branch will best serve their needs.

Relatively recently, those of us talking about it have divided provisioning into “Server” provisioning and “Application” provisioning. This is an accurate subdivision, as tools like Stacki and Cobbler handle the server part and tools like Salt and Puppet handle the application provisioning side. This is not a perfectly clean divide – both Cobbler and Stacki can install/configure certain apps, for example (agents for application provisioning being the obvious one), and Puppet can use Razor to do server provisioning, while Salt doesn’t have a dedicated server provisioning tool, but is doing some interesting things with server provisioning in the cloud space. Add to that the fact that a modern OS is the core of the system and a plethora of… Yes… Applications. There are text editors and network monitors built into modern operating systems that are technically applications being provisioned by OS provisioning tools.

Into this slightly muddled mix we are increasingly seeing another aspect of provisioning. Hardware. While the majority of server provisioning tools support some level of hardware configuration, the level of support required to run a modern datacenter is just not there. There is good reason for this, while operating systems installation can be done generically in a variety of ways, hardware configuration is, by definition, relatively unique to the hardware being configured. A RAID card is not a SAN card, after all, and RAID cards from vendor X are not RAID cards from vendor Y. Indeed, when I was a storage and servers editor, it amazed me at how different two vendor’s interfaces could be… Standardization of programmability was head-nodded by groups like SNIA, but interoperability (from a DevOps or developer perspective) was relatively non-existent.

The market is discovering that quite often, even with tools that support hardware configuration (not all server provisioning tools do), the support is based upon a few disparate vendors and pieces of hardware. This is difficult for mass deployment in a heterogeneous environment, and normally means that operations must intervene to perform manual steps on the way to server provisioning. Automating most of the system is useful, automating all of it frees up resources to work on amazing new things. If operations staff has to sit there to configure the RAID card, then they have to sit there. If systems can do that configuration as part of deployment, then operations staff can be working on the next great project.

So the advanced provisioning stack looks something like this (for hardware and to a limited extent, VMs Cloud and some VM functionality is handled differently because of hardware abstraction and mode of OS deployment):

Provisioning

The thing is that it is not just initial deployment that operations needs to worry about. It is also upgrades and maintenance. I had a disk array lose a drive last year, and part of the fix was upgrading the firmware on the controller. This was not an optional step; it was required to get my NAS back into healthy condition. The same is true with OS security patches. While you could ignore them, that is certainly not IT best practice (not to mention infosec best practices). But changing these things can have implications up the stack. The ability to quickly and efficiently upgrade and repair existing installations is important, but the upgrades required, by cascading up the stack in an increasingly complex environment, can cause problems and consume a lot of time.

So what we need is a toolset that can handle all of the above (and, as my next blog will explore, even more). Not just at initial install time, but throughout the lifecycle of the servers/OS’s/Apps.

In the current marketplace, that means looking at the hardware support for server provisioning tools and seeing if it meets your needs. It is likely that as the market moves forward, this proposition will change, but for now that’s where we are.

What do I think? I think all of this will go through consolidation, and eventually you’ll have a DevOps provisioning tool that handles all of the above and more. But that’s a while off yet.

Read the original blog entry...

More Stories By Don MacVittie

Don MacVittie is founder of Ingrained Technology, A technical advocacy and software development consultancy. He has experience in application development, architecture, infrastructure, technical writing,DevOps, and IT management. MacVittie holds a B.S. in Computer Science from Northern Michigan University, and an M.S. in Computer Science from Nova Southeastern University.

@DevOpsSummit Stories
This session will provide an introduction to Cloud driven quality and transformation and highlight the key features that comprise it. A perspective on the cloud transformation lifecycle, transformation levers, and transformation framework will be shared. At Cognizant, we have developed a transformation strategy to enable the migration of business critical workloads to cloud environments. The strategy encompasses a set of transformation levers across the cloud transformation lifecycle to enhance process quality, compliance with organizational policies and implementation of information security and data privacy best practices. These transformation levers cover core areas such as Cloud Assessment, Governance, Assurance, Security and Performance Management. The transformation framework presented during this session will guide corporate clients in the implementation of a successful cloud solu...
So the dumpster is on fire. Again. The site's down. Your boss's face is an ever-deepening purple. And you begin debating whether you should join the #incident channel or call an ambulance to deal with his impending stroke. Yes, we know this is a developer's fault. There's plenty of time for blame later. Postmortems have a macabre name because they were once intended to be Viking-like funerals for someone's job. But we're civilized now. Sort of. So we call them post-incident reviews. Fires are never going to stop. We're human. We miss bugs. Or we fat finger a command - deleting dozens of servers and bringing down S3 in US-EAST-1 for hours - effectively halting the internet. These things happen.
Hackers took three days to identify and exploit a known vulnerability in Equifax’s web applications. I will share new data that reveals why three days (at most) is the new normal for DevSecOps teams to move new business /security requirements from design into production. This session aims to enlighten DevOps teams, security and development professionals by sharing results from the 4th annual State of the Software Supply Chain Report -- a blend of public and proprietary data with expert research and analysis.Attendees can join this session to better understand how DevSecOps teams are applying lessons from W. Edwards Deming (circa 1982), Malcolm Goldrath (circa 1984) and Gene Kim (circa 2013) to improve their ability to respond to new business requirements and cyber risks.
DXWorldEXPO LLC announced today that Nutanix has been named "Platinum Sponsor" of CloudEXPO | DevOpsSUMMIT | DXWorldEXPO New York, which will take place November 12-13, 2018 in New York City. Nutanix makes infrastructure invisible, elevating IT to focus on the applications and services that power their business. The Nutanix Enterprise Cloud Platform blends web-scale engineering and consumer-grade design to natively converge server, storage, virtualization and networking into a resilient, software-defined solution with rich machine intelligence.
CloudEXPO | DevOpsSUMMIT | DXWorldEXPO are the world's most influential, independent events where Cloud Computing was coined and where technology buyers and vendors meet to experience and discuss the big picture of Digital Transformation and all of the strategies, tactics, and tools they need to realize their goals. Sponsors of DXWorldEXPO | CloudEXPO benefit from unmatched branding, profile building and lead generation opportunities.