/ontap_config_ansible

Role Configuration of ONTAP 9 with Ansible and NetApp ONTAP Collection

Primary LanguageJinjaApache License 2.0Apache-2.0

Role Configuration of ONTAP 9 with Ansible and NetApp ONTAP Collection

30 October 2023

Description

This is an Ansible role for configuring a NetApp ONTAP 9.6 or later storage system using the NetApp ONTAP collection. The goal is to completely configure the system leveraging a SINGLE ROLE using a vars file to accomplish the needed tasks. Unlike many roles, the tasks/main.yml is used to invoke each task (include_task) for each step of the workflow, utilizing looping structures when required. This allows each task to be individually written, reducing complexity, and hopefully making it easier to read, modify, and maintain.

This role is idempotent and can be run repeatedly.

The 'default/main.yml' is well commented, covering each var with a description, usage, and examples. Use this file to build a system-specific vars file for input and modify to suit your needs. If a variable is not set (ie. disk_assign == none) then the relevant task is not invoked. The 'defaults/main.yml' has most of the vars unset so they can be simply omitted from the provided vars input file - Ansible will use the default setting. There are a few true/false vars with a default value (usually) set to NOT invoke the task. If the SAME setting will always be used, change the 'default/main.yml', otherwise set in a separate vars file and pass to the playbook.

Disclaimer

The role and associated components are provided as-is and are intended to provide an example of utilizing the ONTAP collection in Ansible. Fully test in a non-production enviornment before implementing. Feel free to utilize/modify any portion of code for your specific needs.

Requirements

  • ONTAP 9.8 or later and cluster setup has been run successfully (physical storage - not Select)
  • Ansible 2.10.3 or later
  • NetApp Library: netapp-lib (pip3 install --upgrade netapp-lib)
  • Ansible Galaxy Collection: netapp.ontap (https://galaxy.ansible.com/netapp/ontap)
  • This role copied to the desired location (ie. ~/roles or Ansible configured roles path)

Dev/Test Environment

  • AlmaLinux 8.8
  • Ansible Core 2.15.2
  • Python 3.9.16
  • netapp-lib 2021.6.25
  • netapp.ontap collection 22.7.0
  • ONTAP Select v9.12.1
  • vSphere 6.7 & 7.0

Usage

  • Example: ansible-playbook pb_ontap_config.yml -e "@vars_example_nfs.yml"
  • Implement password security in compliance with the environment and best practices (separate vars file, ansible-vault, etc)
  • A sample playbook and vars files are provided as a reference.

Workflow

  1. Gather existing cluster information (ontap_info.yml)
  2. Configure service processors (service_processor.yml)
  3. Assign unowned disks to node(s) (assign_disks.yml)
  4. Enable Cluster High Availability (ha_enable.yml)
  5. Disable AutoSupport (disable_autosupport.yml)
  6. Enable CDP (enable_cdp.yml)
  7. Add licenses (licenses.yml)
  8. Add login banner to cluster (loginbanner.yml)
  9. Add Message of the Day (MOTD) to cluster (motd.yml)
  10. Set Time Zone (timezone.yml)
  11. Configure NTP (ntp.yml)
  12. Configure cluster DNS (dns.yml)
  13. Set SNMP Community (snmp.yml)
  14. Remove specific ports from Default broadcast domain (remove_ports.yml)
  15. Create efficiency policies and schedules (efficiency_policies_schedules.yml)
  16. Create interface groups (igroup.yml)
  17. Add VLANs (vlans.yml)
  18. Create broadcast domains (broadcast_domain.yml)
  19. Create aggregates (aggregate.yml)
  20. Create SVMs (svm.yml)
  21. Add login banner to SVMs (loginbanner.yml)
  22. Configure DNS for each SVM (dns.yml)
  23. Create intercluster LIFs (lif.yml)
  24. Create data and/or management LIFs (lif.yml)
  25. Configure CIFS servers (cifs_server.yml)
  26. Create NAS volumes (volume_nas.yml)
  27. Create iGroups (igroup.yml)
  28. Create SAN volumes (volume_san.yml)
  29. Create and Map SAN LUNs (lun.yml)
  30. Create Load Sharing Mirrors (lsmirror.yml)
  31. Save configuration to file (save_ontap_info.yml)

Example Playbook

- hosts: localhost
  connection: local
  gather_facts: no
  collections:
    - netapp.ontap
  tasks:
  - include_role:
      name: ontap_config

To pass a vars file to the playbook:

ansible-playbook pb_ontap_config.yml -e "@vars_example_nfs.yml"

The 'tasks/main.yml' calls the required tasks based on the vars file settings

Notes

7 January 2024

  • Added 'no_log: true' for the cifs_server task in main.yml to ensure the domain admin password is not displayed or logged

30 October 2023

  • Removed 'lun_list' from ontap_info.yml - no longer needed
  • Removed 'when' conditions from lun.yml
  • Added 'use_python_keys: true' to save_ontap_info.yml

8 October 2023

  • Removed node rename and root aggregate rename tasks and updated main.yml. Root aggregates are no longer visible through the REST API or Ansbile modules.
  • Updated ontap_info.yml and save_ontap_info.yml tasks to use na_ontap_rest_info (removed na_ontap_info since the module is deprecated)
  • Updated svm.yml task - removed the ontapi_version parameter in the NFS task (no longer required)
  • New example vars files