Open in app

Sign in

Write

Sign in

Mastering System Administration with Ansible: Users, Permissions, Partitions, Yum, and Server Configuration

mdshamsfiroz
3 min readOct 31, 2024

--

Ansible is a powerful automation tool that can significantly simplify system administration tasks. In this blog post, we’ll explore how to use Ansible to automate various aspects of system management, including user administration, file permissions, disk partitioning, package management with Yum, and general server configuration.

1. User Management

Ansible provides modules to create, modify, and delete user accounts efficiently.

Creating a User

- name: Create a user
  user:
    name: johndoe
    groups: admin,developers
    shell: /bin/bash
    create_home: yes
    state: presen

Modifying User Permissions

- name: Add user to sudoers
  lineinfile:
    path: /etc/sudoers
    line: 'johndoe ALL=(ALL) NOPASSWD: ALL'
    validate: 'visudo -cf %s'

2. File Permissions

Managing file permissions is crucial for security. Ansible makes it easy to set and maintain correct permissions.

- name: Set file permissions
  file:
    path: /path/to/file
    owner: johndoe
    group: developers
    mode: '0644'

3. Disk Partitioning

Ansible can automate disk partitioning tasks, which is particularly useful for server provisioning.

- name: Create a new partition
  parted:
    device: /dev/sdb
    number: 1
    state: present
    part_end: 100%
- name: Format the new partition
  filesystem:
    fstype: ext4
    dev: /dev/sdb1
- name: Mount the new partition
  mount:
    path: /mnt/data
    src: /dev/sdb1
    fstype: ext4
    state: mounted

4. Yum Package Management

Yum is the package manager for Red Hat-based systems. Ansible provides robust support for Yum operations.

Installing Packages

- name: Install multiple packages
  yum:
    name:
      - httpd
      - mariadb-server
      - php
    state: present

Updating All Packages

- name: Update all packages
  yum:
    name: '*'
    state: latest

Managing Repositories

- name: Add EPEL repository
  yum_repository:
    name: epel
    description: EPEL YUM repo
    baseurl: https://download.fedoraproject.org/pub/epel/$releasever/$basearch/

5. Server Configuration

Ansible excels at configuring servers consistently across your infrastructure.

Configuring SSH

- name: Configure SSH
  template:
    src: sshd_config.j2
    dest: /etc/ssh/sshd_config
  notify: Restart SSH
handlers:
  - name: Restart SSH
    service:
      name: sshd
      state: restarted

Setting up a Web Server

- name: Install and configure Apache
  block:
    - name: Install Apache
      yum:
        name: httpd
        state: present
- name: Start and enable Apache
      service:
        name: httpd
        state: started
        enabled: yes
    - name: Copy website files
      copy:
        src: files/website/
        dest: /var/www/html/

Putting It All Together

Here’s an example playbook that combines various system administration tasks:

---
- name: Configure Server
  hosts: webservers
  become: yes
tasks:
    - name: Create user
      user:
        name: webadmin
        groups: wheel
        shell: /bin/bash
    - name: Set up partition
      parted:
        device: /dev/sdb
        number: 1
        state: present
        part_end: 100%
    - name: Install web server packages
      yum:
        name:
          - httpd
          - php
        state: present
    - name: Configure Apache
      template:
        src: httpd.conf.j2
        dest: /etc/httpd/conf/httpd.conf
      notify: Restart Apache
    - name: Set file permissions
      file:
        path: /var/www/html
        owner: webadmin
        group: apache
        mode: '0755'
        recurse: yes
  handlers:
    - name: Restart Apache
      service:
        name: httpd
        state: restarted

Conclusion

Ansible provides a powerful and flexible way to automate various system administration tasks. By using Ansible for user management, permissions, partitioning, package management, and server configuration, you can:

  1. Ensure consistency across your infrastructure
  2. Reduce manual errors
  3. Save time on repetitive tasks
  4. Easily scale your operations

Remember to always test your Ansible playbooks in a safe environment before applying them to production systems. With practice, you’ll find that Ansible can handle even the most complex system administration tasks with ease and efficiency.
So, whether you’re a tech enthusiast, a professional, or just someone who wants to learn more, I invite you to follow me on this journey. Subscribe to my blog and follow me on social media to stay in the loop and never miss a post.

Together, let’s explore the exciting world of technology and all it offers. I can’t wait to connect with you!”

Connect me on Social Media: https://linktr.ee/mdshamsfiroz

Happy coding! Happy learning!

Systemadministration
Ansible
Automation
Arth
Server

--

--

mdshamsfiroz
mdshamsfiroz

Written by mdshamsfiroz

30 Followers
19 Following

Trying to learn tool by putting heart inside to make something

No responses yet

Help

Status

About

Careers

Press

Blog

Privacy

Terms

Text to speech

Teams