## Ansible

Now that the infrastructure has been successfully provisioned, we can proceed with configuring and deploying software on the provisioned resources using Ansible.

### Setup

As with Terraform, we need to ensure the Ansible executables are accessible by adding their install directory to the PATH in each new Bash session.

In [1]:
export PATH=/work/.local/bin:$PATH
export PYTHONUSERBASE=/work/.local

If you haven’t already, be sure to update the ansible.cfg file with your assigned floating IP address. You can find this IP in the output of the Terraform provisioning step.

Once updated, move the ansible.cfg file to the correct location as required by your setup. The following cell will display the contents of this file—verify that your actual floating IP appears correctly in the output.

In [6]:
cat /home/jgr7704_nyu_edu/work/ML-SysOps_Project-main\ 2/continous_X_pipeline/ansible/ansible.cfg

[defaults]
stdout_callback = yaml
inventory = /work/gourmetgram-iac/ansible/inventory.yaml

[ssh_connection]
ssh_args = -o StrictHostKeyChecking=off -o UserKnownHostsFile=/dev/null -o ForwardAgent=yes -o ProxyCommand="ssh -o StrictHostKeyChecking=no -o UserKnownHostsFile=/dev/null -W %h:%p cc@129.114.26.127"


In [7]:
cd /home/jgr7704_nyu_edu/work/ML-SysOps_Project-main\ 2/continous_X_pipeline/ansible

### Verify connectivity

First, we'll execute a basic Ansible task to verify connectivity with all the hosts defined in the inventory.yml file.

    all:
      vars:
        ansible_python_interpreter: /usr/bin/python3
      hosts:
        node1:
          ansible_host: 192.168.1.11
          ansible_user: cc
        node2:
          ansible_host: 192.168.1.12
          ansible_user: cc
        node3:
          ansible_host: 192.168.1.13
          ansible_user: cc

It uses the `ping` module, which checks if Ansible can connect to each host via SSH and run Python code there.

In [9]:
ansible -i inventory.yml all -m ping

node2 | SUCCESS => {
    "changed": false,
    "ping": "pong"
}
node1 | SUCCESS => {
    "changed": false,
    "ping": "pong"
}
node3 | SUCCESS => {
    "changed": false,
    "ping": "pong"
}


But to be able to do that we would need to add the private key in .ssh folder. 

### Run a “Hello, World” playbook

In [10]:
ansible-playbook -i inventory.yml general/hello_host.yml


PLAY [Hello, world - use Ansible to run a command on each host] ****************

TASK [Run hostname command] ****************************************************
changed: [node2]
changed: [node3]
changed: [node1]

TASK [Show hostname output] ****************************************************
ok: [node1] => 
  msg: The hostname of node1 is node1-ms-classification-project31
ok: [node2] => 
  msg: The hostname of node2 is node2-ms-classification-project31
ok: [node3] => 
  msg: The hostname of node3 is node3-ms-classification-project31

PLAY RECAP *********************************************************************
node1                      : ok=2    changed=1    unreachable=0    failed=0    skipped=0    rescued=0    ignored=0   
node2                      : ok=2    changed=1    unreachable=0    failed=0    skipped=0    rescued=0    ignored=0   
node3                      : ok=2    changed=1    unreachable=0    failed=0    skipped=0    rescued=0    ignored=0   



This was just a sanity check!