Ansible Automation Platform
Ansible Role: apstra-aap-configure
You can use Ansible Role to configure Ansible Automation Controller (Ansible Tower) and Ansible Decisions (event-driven Ansible) for Juniper Apstra EDA.
Role Variables
| Variable | Required | Type | Comments |
|---|---|---|---|
| organization_name | yes | String | Name of the organization in Ansible Automation Plaform |
| project_url | yes | String | URL for the project where Playbooks and Rulebooks are available |
| project_scm_branch | yes | String | SCM branch for the project |
| apstra_blueprint_name | yes | String | Name of the Apstra blueprint |
| openshift_host | yes | String | Host address for OpenShift, for example: https://api.ocpapstra-lab.englab.juniper.net |
| automation_controller_host | yes | String | Ansible host controller URL. Go to operators->Ansible Automation Platform->All Instances-> Automation Controller-> URL |
| automation_controller_username | yes | String | Ansible host controller Username. Go to operators->Ansible Automation Platform->All Instances-> Automation Controller-> Username |
| automation_controller_password | yes | String | Ansible host controller URL. Go to operators->Ansible Automation Platform->All Instances-> Automation Controller-> Password |
| execution_environment_image_url | yes | String | URL where image for Execution environment is pushed |
| eda_controller_host | yes | String | Ansible EDA controller URL. Go to operators->Ansible Automation Platform->All Instances-> Automation EDA-> URL |
| eda_controller_username | yes | String | Ansible EDA controller Username. Go to operators->Ansible Automation Platform->All Instances-> Automation EDA-> Username |
| eda_controller_password | yes | String | Ansible EDA controller Password. Go to operators->Ansible Automation Platform->All Instances-> Automation EDA-> Password |
| controller_api | yes | String | API endpoint of Ansible controller, for example: https://aap.apps.ocpapstra-lab.englab.juniper.net/api/controller/" |
| decision_environment_image_url | yes | String | URL where image for Decision environment is pushed |
| apstra_api_url | yes | String | URL for the Apstra API |
| apstra_username | yes | String | Username for Apstra |
| apstra_password | yes | String | Password for Apstra (sensitive) |
See Install and configure Ansible Automation Platform to learn how to obtain the Certificate Authority data and API authentication bearer token.
As a best practice, use Ansible Vault to encrypt these files.
Files
| Name | Required to Change | Comments |
|---|---|---|
| cred_injector_config.json | No | This file requires you to create Apstra credential types in Ansible automation platform. |
| cred_input_config.json | No | This file requires you to create Apstra credential types in Ansible automation platform. |
| openshift-ca.crt | yes | Certificate Authority data for OpenShift Cluster. |
| openshift-sa.crt | yes | API authentication bearer token of Service Account of OpenShift. |
To learn how to obtain the Certificate Authority data and API authentication bearer token, see Install and configure Ansible Automation Platform.
As a best practice, use Ansible Vault to encrypt these files.
Example Playbook
You can run a playbook to configure Ansible Automation Platform.
Here's an example of how to use this role.
---
- name: Configure Ansible Automation Platform for Apstra EDA
hosts: localhost
gather_facts: false
roles:
- role: apstra-aap-configure