1. ForemanPuppet NYC User Group Apr 20121 Ohad Levy

2. The Foreman RealmProvisioningConfiguration Management PuppetInventory and Activity ReportingOne (simple) interface/console/API for your infrastructure2 Ohad Levy 3. Typical System LifecyclePre/ Installation Initial Configuration UpdatesDrift Management Audits3Ohad Levy 4. Foreman Architecture DNS Smart DHCPSmart ISCSmart MS DNS Smart PuppetDNSSmart ProxyTFTP DHCPProxy SmartDHCPISC ProxySmartMSProxy Smart CA Pupet..DNSProxyTFTP .. Proxy DHCPProxy TFTP ProxyCA Restful API Segmented NetworkHTTP(s) PuppetPuppetPuppetENCac ts / s/F ReportWeb Users ForemanAPIComputeLibvirtRHEV-MEC2VMWareDBLDAP / ADINTERNAL4 Ohad Levy 5. Demo5Ohad Levy 6. InventoryAutomatically collects your Puppet based inventory (including your custom facts)Easy to browse and search though your inventoryFacts can be used as a permission filter to your hosts6 Ohad Levy 7. Node ClassifierSimple UI to associate hosts with puppet classesMultiple Puppet Environment supportAllows you to group your hostsVariable inheritance (split the variables from the manifests)Update many hosts at once7Ohad Levy 8. ReportingDashboard for all of your puppet hostsDetailed Log for what Puppet didSimple Search though the logs (show me all hosts/reports with yum related activities)Audit LogSummary EmailsAlerting (API, Email etc)8 Ohad Levy 9. More Puppet integrationsPuppetCA managementTrigger Puppet runsPuppetdoc integrationCan work with your existing storeconfigsSupport multiple Puppetmasters and CA9Ohad Levy 10. Restful API All UI actions can be used via API Powerful search API Can by used within Puppet as an alternative tostoreconfigs Foreman CLI RemoteAdmin10Ohad Levy 11. User Management Internal and External (LDAP/AD) user authentication RBAC (Role Based Access Control) Per host group, domain, fact etc Dynamic groups (AD like) Can be used to CRUD and restrict to "your" set of hosts self service11Ohad Levy 12. Foreman Installer Automate installation of Foreman Foreman Proxy Puppet master Apache Passenger Git ...http://github.com/theforeman/foreman-installer12 Ohad Levy 13. About the project Almost 3 years old 50+ Contributors Largest installation =~ 5000 active hosts Homepage http://theforeman.org Overall Projects http://github.com/theforeman13 Ohad Levy 14. Some of Foreman users CERN, Switzerland Citrix Online DHL Norton Data Services, Symantec BBC Belgian National Pensions Office Rocky Mountain College Georgia Institute of Technology College of Computing Yakaz iBahn14 Ohad Levy 15. Community Friendly Irc - #theforeman on freenode Usergroup -http://groups.google.com/group/foreman-users (&dev)15 Ohad Levy 16. Links http://kanaka.github.com/noVNC/ http://theforeman.org http://fog.io http://rubygems.org/gems/rbovirt http://puppetlabs.com http://katello.org http://pulpproject.org http://cloudprovisioning.wordpress.com16Ohad Levy 17. Now is a good time to ask more questions17Ohad Levy 18. Things I should have mentioned during the talk :) ConsoleDual mode enc/provisioning/reporting FogInstallation Orchestration layerUnder the hood Provisioning templates Code overview Search Plugable db Smartvars18Ohad Levy 19. 19 Ohad Levy 20. A possible Open Source Stack Foreman is aimed to be a Single Address For AllMachines Life Cycle Management. Puppet, an automated administrative engine for your*nix systems, performs administrative tasks (such asadding users, installing packages, and updating serverconfigurations) based on a centralized specification. Fog provides an accessible entry point and facilitatescross service compatibility for the Cloud. rbovirt Ruby API binding oVirt a virtual datacenter management platform20 Ohad Levy 21. noVNC VNC client using HTML5 (WebSockets, Canvas) withencryption (wss://) support. Requires web socket enabled vnc server, or a proxy foreach vnc connection. QEMU does not include support for WS.21 Ohad Levy 22. REST22 Ohad Levy 23. 23 Ohad Levy