Configuration steps for running terraform/ansible through tenant's gateway
Onboarding an S4 HANA system onto an Azure tenant can be a complex process involving multiple stages of setup and configuration. IT-Conductor simplifies this process by leveraging the automation capabilities of Terraform and Ansible scripts. Terraform, an infrastructure as code tool, efficiently provisions and manages Azure resources, while Ansible automates the configuration and deployment of the S4 HANA system.
Pre-Requisites
Before provisioning the infrastructure on IT-Conductor, please follow the steps below.
Set up the IT-Conductor Gateway. See Gateway Setup for more details.
Set up Azure Monitoring in IT-Conductor by following the instructions in our Azure Monitoring
Create a user dedicated to running the automation on the server where the gateway was installed by using the following script.
sudo useradd -m -d /home/itc_automation itc_automation
passwd itc_automation
For all IT-Conductor Gateways on Ubuntu, make sure to update /etc/sudoers file with the following
itc_automation ALL=(ALL) NOPASSWD: ALL
Â
Â
Â
Â
Â
Â
Â
Â
Make github access for tenant
Â
For accessing the terraform and ansible scripts, we need to have tenant’s user access to github repo. For this we need to do following
Â
Need to generate ITC email for tenant
Invite tenant IT mail for accessing repoisotry
Register tenant ITC mail to github
Generate the personal access token for ITC mail
Â
Sync github project to ITC
Â
Configure the github and git project in ITC for the tenant.
Â
Navigate to repos
Click “+“ to configure new repo
Fill up the form and then click “+“
After the project is created, we can view the synced files by clicking on the repo itself
Â
Â
Configure user in tenant’s gateway specifically to run automation
Â
Run following command to add user
sudo useradd -m -d /home/itc_automation itc_automation
passwd itc_automation
For ITC gateway with Ubuntu, make sure to update /etc/sudoers file with following
itc_automation ALL=(ALL) NOPASSWD: ALL
Â
Configure Ansible and Terraform Application
Â
This configures the parameters needed to run ansible and terraform through tenant’s gateway.
For this
Make Cloud object provider ( in case of azure its AzureTenant containing tenant id and subscription id)
Make Account object for Cloud ( in case of azure its AzureAccount containing client id and key)
Make TerraformBackend object for terraform job
Make AnsibleExecConfig object for ansible job
Make Terraform and Ansible object
Configure Account for terraform and ansible with user added in automation gateway
Â
Copy process definitions from OZSoft tenant and configure
Â
Copy the automation process definition that we want to test.
Â