Readme.md 2.88 KB
Newer Older
Dmitry Volodin's avatar
Dmitry Volodin committed
1
2
3
# NOC Tower
NOC Tower is the tool for deployment and maintaining multiple
NOC (http://nocproject.org/) installations.
Aleksey Shirokih's avatar
Aleksey Shirokih committed
4

Aleksey Shirokih's avatar
Aleksey Shirokih committed
5
[![build status](https://code.getnoc.com/noc/tower/badges/master/build.svg)](https://code.getnoc.com/noc/tower/commits/master)
Dmitry Volodin's avatar
Dmitry Volodin committed
6

Dmitry Volodin's avatar
Dmitry Volodin committed
7
## Preparation
Aleksey Shirokih's avatar
Fix doc    
Aleksey Shirokih committed
8
### Debian based Linux
Dmitry Volodin's avatar
Dmitry Volodin committed
9
10
```
#!shell
Aleksey Shirokih's avatar
Aleksey Shirokih committed
11
# apt-get install python-virtualenv libffi6 libffi-dev python-dev gcc libssl-dev
Dmitry Volodin's avatar
Dmitry Volodin committed
12
13
14
15
# groupadd tower
# useradd -d /home/tower -g tower -s /bin/bash -m tower
```

16
17
18
19
20
21
## Debian only
```
#!shell
/opt/tower# apt-get install dbus
```

Aleksey Shirokih's avatar
Fix doc    
Aleksey Shirokih committed
22
23
24
### Rhel based Linux
```
#!shell
Aleksey Shirokih's avatar
Aleksey Shirokih committed
25
# yum install python-virtualenv libffi libffi-devel python-devel gcc openssl-devel
Aleksey Shirokih's avatar
Fix doc    
Aleksey Shirokih committed
26
27
# groupadd tower
# useradd -d /home/tower -g tower -s /bin/bash -m tower
ezombie's avatar
ezombie committed
28
29

You need set 'SELINUX=disabled' in /etc/sysconfig/selinux  and reboot system
Aleksey Shirokih's avatar
Fix doc    
Aleksey Shirokih committed
30
31
32
```


Dmitry Volodin's avatar
Dmitry Volodin committed
33
34
35
### FreeBSD
```
#!shell
Aleksey Shirokih's avatar
Aleksey Shirokih committed
36
# pkg install -y python2 libffi py27-pip py27-virtualenv py27-sqlite3 ca_root_nss
Dmitry Volodin's avatar
Dmitry Volodin committed
37
# pw groupadd -n tower
38
# pw useradd -g tower -s /bin/csh -d /home/tower -n tower -m
Dmitry Volodin's avatar
Dmitry Volodin committed
39
40
41
```


Dmitry Volodin's avatar
Dmitry Volodin committed
42
## Installation
Dmitry Volodin's avatar
Dmitry Volodin committed
43
44
45
46
Tower is installed into /opt/tower directory by default, though you
can use arbitrary directory (i.e. /usr/local/tower) as well.
Replace /opt/tower/ to directory of your choice

Dmitry Volodin's avatar
Dmitry Volodin committed
47
 - Create Tower directory
48
49
50

```
#!shell
Dmitry Volodin's avatar
Dmitry Volodin committed
51
52
# mkdir /opt/tower
# cd /opt/tower
53
```
Dmitry Volodin's avatar
Dmitry Volodin committed
54
55

 - Create virtualenv
Dmitry Lukhtionov's avatar
Dmitry Lukhtionov committed
56

57
58
```
#!shell
Dmitry Volodin's avatar
Dmitry Volodin committed
59
/opt/tower# virtualenv .
60
```
Dmitry Volodin's avatar
Dmitry Volodin committed
61

Dmitry Volodin's avatar
Dmitry Volodin committed
62
 - Install Tower
Dmitry Lukhtionov's avatar
Dmitry Lukhtionov committed
63

Dmitry Volodin's avatar
Dmitry Volodin committed
64
65
```
#!shell
Aleksey Shirokih's avatar
Aleksey Shirokih committed
66
/opt/tower# ./bin/pip install --upgrade pip
Aleksey Shirokih's avatar
Aleksey Shirokih committed
67
/opt/tower# ./bin/pip install https://cdn.getnoc.com/tower/noc-tower-latest.zip
Dmitry Volodin's avatar
Dmitry Volodin committed
68
69
70
/opt/tower# chown -R tower var/
```
 - Generate Tower ssh keys
Dmitry Lukhtionov's avatar
Dmitry Lukhtionov committed
71

72
73
```
#!shell
Dmitry Volodin's avatar
Dmitry Volodin committed
74
/opt/tower# su - tower -c "ssh-keygen -t rsa -b 4096"
75
```
Dmitry Volodin's avatar
Dmitry Volodin committed
76

Aleksey Shirokih's avatar
Aleksey Shirokih committed
77
78
79
80
## For single node installation only
Add user tower to sudo group.
* For example: `adduser tower sudo`
* Select Local installation type with local ip on Nodes screen. 
Dmitry Lukhtionov's avatar
Dmitry Lukhtionov committed
81
* Run Tower
Dmitry Lukhtionov's avatar
Dmitry Lukhtionov committed
82

83
84
```
#!shell
Dmitry Volodin's avatar
Dmitry Volodin committed
85
/opt/tower# su - tower -c "cd /opt/tower && ./bin/tower-web"
86
```
Dmitry Volodin's avatar
Dmitry Volodin committed
87

88
## Deploying
89

Dmitry Volodin's avatar
Dmitry Volodin committed
90
 - Enter the magical mistery tower.
Dmitry Volodin's avatar
Dmitry Volodin committed
91
92
93
94
95
96
97
98
99
100
   Open http://<IP>:8888/ in your browser. Login as admin/admin

 - Set up Tower
 Go to settings and set Tower's site URL (http://<IP>:8888/) and
 Tower's repository URL, as seen by nodes (http://<IP>:8888/hg).

 Do not forget to change tower's admin password
 (Upper right menu > Change Password)

## Prepare nodes
Aleksey Shirokih's avatar
Fix doc    
Aleksey Shirokih committed
101
102
On each node 
* create ansible user (*ansible* by default),
Dmitry Lukhtionov's avatar
Dmitry Lukhtionov committed
103
104
* grant it passwordless `sudo` privileges and copy Tower's public ssh key (*/home/tower/.ssh/id_rsa.pub*) to *ansible's*

Aleksey Shirokih's avatar
Fix doc    
Aleksey Shirokih committed
105
106
107
108
```
#!shell
/opt/tower# su - tower -c "ssh-copy-id node_ip"
```
Aleksey Shirokih's avatar
Aleksey Shirokih committed
109
110

## RHEL Only
Aleksey Shirokih's avatar
Fix doc    
Aleksey Shirokih committed
111
112
* For RHEL based systems check if "Defaults    requiretty" is commented.
* Ensure python2.7 package installed
Aleksey Shirokih's avatar
Aleksey Shirokih committed
113
* Create new file on tower in /opt/tower/var/tower/playbooks/ENV_NAME/ansible/vars/local.yml with such lines
Aleksey Shirokih's avatar
fix    
Aleksey Shirokih committed
114

Aleksey Shirokih's avatar
Aleksey Shirokih committed
115
116
117
```
rhel_subscription_username: ""
rhel_subscription_password: ""
Aleksey Shirokih's avatar
fix    
Aleksey Shirokih committed
118
```
Aleksey Shirokih's avatar
Aleksey Shirokih committed
119

Dmitry Lukhtionov's avatar
Dmitry Lukhtionov committed
120

Aleksey Shirokih's avatar
Aleksey Shirokih committed
121
122
## Proxy 
In cause of using proxy for internet acces you should set proxy settings to `/home/tower/.hgrc` that way
Aleksey Shirokih's avatar
fix    
Aleksey Shirokih committed
123

Aleksey Shirokih's avatar
Aleksey Shirokih committed
124
125
126
127
```
[http_proxy]
host=192.168.1.1:3128
```