Instalación de Ansible Tower en RHOCP 4.9+

# Instalación de Ansible Tower en RHOCP 4.9+ ## Descarga del instalador ``` wget https://releases.ansible.com/ansible-tower/setup_openshift/ansible-tower-openshift-setup-latest.tar.gz tar -xzf ansible-tower-openshift-setup-latest.tar.gz cd ansible-tower-openshift-setup-3.8.6-1/ ``` ## Seteamos en true la validación del certificado TLS La modificación debe realizarse en la tarea "Authenticate with OpenShift via user and password". Linea 21. Hay que modificar el valor 'false' por 'true' ``` $ vim roles/kubernetes/tasks/openshift_auth.yml ~~~ --insecure-skip-tls-verify={{ openshift_skip_tls_verify | default(false) | bool }} ~~~ ``` ## Creamos el Persistent Volume (PV) para la DB PostgreSQL ``` # vim postgres-nfs-pvc.yml kind: PersistentVolumeClaim apiVersion: v1 metadata: name: postgresql spec: accessModes: - ReadWriteOnce resources: requests: storage: 20Gi $ oc new-project tower $ oc apply -f postgres-nfs-pvc.yml ``` ## Instalación de Ansible Tower ``` $ vim install_tower.sh #!/bin/bash echo -n "URL: "; read apiurl echo -n "User: "; read user echo -en "Pass: "; read -s password; echo ./setup_openshift.sh -e openshift_host=${apiurl} -e openshift_project=tower -e openshift_user=${user} -e openshift_password=${password} -e admin_password=r3dh4t1! -e secret_key=mysecret -e pg_username=admin -e pg_password=r3dh4t1! -e rabbitmq_password=r3dh4t1! -e rabbitmq_erlang_cookie=rabbiterlangpwd -e openshift_pg_pvc_name=postgresql $ chmod +x install_tower.sh $ ./install_tower.sh URL: https://api.cluster-v9gtc.v9gtc.sandbox272.opentlc.com:6443 User: admin Pass: Using /etc/ansible/ansible.cfg as config file PLAY [Deploy Tower] ************************************************************ ~~~ PLAY RECAP ********************************************************************* localhost : ok=48 changed=24 unreachable=0 failed=0 skipped=27 rescued=0 ignored=3 The setup process completed successfully. Setup log saved to /home/masardis/acm/ansible-tower-openshift-setup-3.8.6-1/setup_container_cluster-2022-07-14-17:54:53.log $ oc get pods $ oc get route -o=custom-columns=HOST:spec.host ```