Versions Compared

Old Version 17

changes.mady.by.user Juan Tomás Alonso Nieto (Deactivated)

Saved on

compared with

New Version Current

changes.mady.by.user Juan Tomás Alonso Nieto (Deactivated)

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

Expand
titleInventory creation

The inventory is the base of the deployment process and will define the topology of the deployment. For more information on the ansible inventory, check this article.

The inventory file can be created using the inventory creation wizard or using the example files provided with the packages and editing them manually. Remember to have the virtual environment activated (step 4 in “Requirements Installation”).

Inventory creation (using wizard)

  1. Execute the inventory creation wizard specifying the inventory output file. The wizard will create the inventory file based on your inputs to a series of questions.

    Code Block
    python tools/cookiecutinvt.py -o inventories/deployment_inventory.yaml

  2. For security reasons, we strongly recommend that you change the default password of root user for MySQL service. It is only needed when the MySQL service is deployed in a docker container.
    To configure the password for the MySQL root user, edit the inventory file inventories/deployment_inventory.yaml

    Code Block
    vim inventories/deployment_inventory.yaml

    and add deam_mysql_root_password variable with a strong password in its value.

    Code Block
    all:
  vars:
    deam_mysql_root_password: <<ROOT PASSWORD HERE>>

    Replace <<ROOT PASSWORD HERE>> by the password value of your choice.

Info

Bear in mind that indentation is very important in yaml files.

Inventory creation (using example file)

  1. Copy the example inventories/1host-example.yaml and save it as inventories/deployment_inventory.yaml

  2. Edit the file based in the particular requirements of the installation. Refer to this article to create a proper inventory for your environment in a production deployment. Minimal configuration for a standard lab and PoC deployment in a single server is depicted in steps 7 and 8.

  3. Set the following properties under all.hosts.devo-ea-manager yaml section:

    • ansible_host: Devo Endpoint Agent Manager IP.

    • ansible_user: User that will run Devo EAM. Same as the user that has been configured previously in sudoers

    • ansible_ssh_password: User SSH Password that runs Devo EAM User (ansible_user)

    • Enable the packs that you want to deploy, for more info check this article.

    • If you want to use a private key instead of user and password, please check this article.

  4. Set the property ansible_python_interpreter according to your python interpreter:

    1. For Red Hat 7: /usr/bin/python

    2. For other distros: /usr/bin/python3

  5. Set the following properties under all.vars yaml section:

    • deam_relay_entrypoint : tcp://FQDN_CENTRAL_RELAY:443. Where FQDN_CENTRAL_RELAY is the FQDN of your central Devo relay :

      • If your domain is deployed in the US Cloud (us.devo.com): tcp://collector-us.elb.relay.logtrust.netdevo.io:443

      • If your domain is deployed in the EU Cloud (eu.devo.com): tcp://eu.elb.relay.logtrust.net:443

      • If your domain is deployed in a different cloud, contact your Devo representative to know your entry point.

      • To send the data via a Devo Relay instead of sending it directly to Devo check here.

...