WO2022267407A1 - Procédé et appareil de déploiement de proxy basés sur un outil de maintenance et d'exploitation automatisé - Google Patents

Procédé et appareil de déploiement de proxy basés sur un outil de maintenance et d'exploitation automatisé Download PDF

Info

Publication number
WO2022267407A1
WO2022267407A1 PCT/CN2021/141134 CN2021141134W WO2022267407A1 WO 2022267407 A1 WO2022267407 A1 WO 2022267407A1 CN 2021141134 W CN2021141134 W CN 2021141134W WO 2022267407 A1 WO2022267407 A1 WO 2022267407A1
Authority
WO
WIPO (PCT)
Prior art keywords
deployment
client
host name
instruction
maintenance tool
Prior art date
Application number
PCT/CN2021/141134
Other languages
English (en)
Chinese (zh)
Inventor
曹旭东
冯坤炎
Original Assignee
深圳前海微众银行股份有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 深圳前海微众银行股份有限公司 filed Critical 深圳前海微众银行股份有限公司
Publication of WO2022267407A1 publication Critical patent/WO2022267407A1/fr

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/50Network services
    • H04L67/56Provisioning of proxy services
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F8/00Arrangements for software engineering
    • G06F8/60Software deployment
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F8/00Arrangements for software engineering
    • G06F8/60Software deployment
    • G06F8/61Installation
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L61/00Network arrangements, protocols or services for addressing or naming
    • H04L61/50Address allocation
    • H04L61/5053Lease time; Renewal aspects
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/01Protocols
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/2866Architectures; Arrangements
    • H04L67/30Profiles

Definitions

  • the present application relates to the network technology field of financial technology (Fintech), in particular to an agent deployment method and device based on automated operation and maintenance tools.
  • FreeIPA is an integrated security information management solution.
  • FreeIPA includes Linux (Fedora), 389Directory Server (lightweight directory access), MIT Kerberos (the core of domain name authentication), NTP (Network Time Protocol, Network Time Protocol), DNS (Domain Name System, Domain Name System), Dogtag (Certificate System) (an authentication system that provides a strong security framework to ensure the identity of users and the privacy of communications) and other identity authentication and policy functions. Under the freeIPA system, you need to install the freeIPA client on each machine, and register the machine with the freeIPA server to realize security information management.
  • the traditional C/S architecture release system is usually used to deploy the freeIPA client (sssd daemon process).
  • This method needs to deploy the release system on the release server and the release client to realize the deployment of the sssd daemon process.
  • the workload is heavy, the preparation period is long, and the efficiency is low.
  • Embodiments of the present application provide an agent deployment method and device based on an automated operation and maintenance tool, which can reduce deployment workload and preparation period, and improve deployment efficiency.
  • the embodiment of the present application provides an agent deployment method based on an automated operation and maintenance tool, the method including:
  • the deployment server sends a detection instruction to the deployment client based on the installed automated operation and maintenance tool; the deployment server sends an installation agent instruction to the deployment client based on the automated operation and maintenance tool after receiving the detection passing notification;
  • the installation agent instruction is used to instruct the deployment client to obtain the agent software package from the software package manager and install the agent program; the deployment server changes the first host name to the second host name based on the automated operation and maintenance tool, The first host name is the original host name of the deployment client, and the second host name is a host name in a preset format; A registration result of the management server; the deployment server restores the second host name to the first host name based on the automated operation and maintenance tool.
  • the deployment server directly instructs the deployment client to install the agent program according to the local IP of the deployment client.
  • this application does not need to build a traditional publishing system, which can effectively reduce the deployment workload and preparation period, and improve deployment efficiency.
  • detecting the installation condition of the agent program on the deployment client can ensure the normal operation of the agent program on the deployment client.
  • the deployment server changes the original host name of the deployment client to a host name in a preset format, and restores the host name to the original host name after obtaining the registration result of the deployment client on the management server.
  • the host name of each deployment client in the management server is a host name in a preset format, and the preset format can be set as required, so that the management server can manage each deployment client.
  • restoring the host name to the original host name can also prevent other services from being abnormal due to the change of the host name when the original host name is applied to other services. That is, in the case of ensuring the normal operation of each service of the deployed client, the convenience of managing the deployed client is improved.
  • the installation agent instruction after sending the installation agent instruction to the deployment client, it also includes:
  • the deployment server monitors the installation status of the deployment client based on the automated operation and maintenance tool; if the installation is not successful within a preset period of time, an end installation instruction is sent to the deployment client based on the automated operation and maintenance tool .
  • the automated operation and maintenance tool in the deployment server sets a monitoring process for each deployment client to monitor the loading process of the agent package of the client. If it is determined that the deployment client does not receive the described The agent software package sent by the software package manager; the deployment server will send an end installation instruction to end the installation of the agent program. In this way, the deployment client is prevented from continuously trying to connect to the package manager to obtain the agent package, which leads to waste of resources.
  • the deployment server changes the first hostname to the second hostname based on the automated operation and maintenance tool, it includes: the deployment server detects that the deployment client is based on the automated operation and maintenance tool After the terminal is successfully installed, send a host name change instruction; the host name change instruction is used to instruct the deployment client to use the second host name as the host name of the deployment client;
  • the deployment server restores the second host name to the first host name based on the automated operation and maintenance tool, including:
  • the deployment server sends a host name restoration instruction to the deployment client based on the automated operation and maintenance tool; the host name restoration instruction is used to instruct the deployment client to update the first host name to the deployment client The hostname of the client.
  • the first host name that does not conform to the preset format is changed to the second host name that conforms to the preset format. For example, change the first host name that uses a meaningless character string as the host name to the second host name that complies with the rules of the second-level domain name.
  • the deployment client can communicate with the management server through the second host name to perform registration management and the like.
  • the deployment server sends the host name recovery command to the deployment client, so that other services communicate with the client through the first host name, preventing other services from failing to restore the first host name. In case of failure to operate normally, ensure the reliability of services provided by the deployment client.
  • the installation agent instruction after sending the installation agent instruction to the deployment client, it also includes:
  • the deployment server sends an address addition instruction to the deployment client based on the automated operation and maintenance tool, the address addition instruction includes a search instruction, and the address addition instruction is used to instruct the deployment client
  • the address addition instruction includes a search instruction
  • the address addition instruction is used to instruct the deployment client
  • the deployment server sends an address addition instruction to the deployment client to add the domain name and IP address of the management server to the domain name file of the deployment client.
  • this application prevents the domain name and IP address of the management server from being deployed in the client.
  • the original domain name file is lost, resulting in abnormalities in services that rely on the original domain name file; and the agent program can check the current domain name file according to the search command in the address addition command.
  • the target location of the domain name file already contains the IP address and domain name of the management server, the address of the target location is duplicated due to the addition, and the process of adding the domain name file is simplified.
  • the deployment server after sending the address addition instruction to the deployment client, it further includes: the deployment server sends a registration instruction to the deployment client based on the automated operation and maintenance tool, and the registration instruction is used to indicate the The deployment client adds the domain name and IP address of the management server to the authentication configuration file, and authenticates the management server according to the authentication configuration file.
  • the domain name and IP address of the management server in the domain name file are added to the authentication configuration file, so that the deployment client can perform authentication with the management server according to the domain name and IP address of the management server in the authentication configuration file, ensuring Authentication reliability.
  • the deployment server further includes: the deployment server obtains the If the registration of the deployment client is completed, a test instruction is sent to the deployment client, and the test instruction is used to instruct the deployment client to test whether the registration with the management server is successful.
  • the deployment server acquires the registration completion status of the deployment client based on the automated operation and maintenance tool. If the registration is completed, a test instruction is sent to the deployment client, so that the deployment client tests whether the registration of the deployment client in the management server is successful. If it fails, you can re-initiate the agent deployment process, or initiate a registration failure alarm, and the staff will handle it accordingly. Ensure the reliability of the deployment client registration on the management server.
  • the deployment server after sending the installation agent instruction to the deployment client, it further includes: the deployment server obtains the successful registration status of the deployment client based on the automated operation and maintenance tool, and the deployment server obtains the registration success status based on the deployment server
  • the automated operation and maintenance tool sends a configuration change instruction to the deployment client, where the configuration change instruction is used to instruct the deployment client to add a configuration file to the target location of the agent program.
  • the deployment server can also send a configuration change instruction to the deployment client based on the automatic operation and maintenance tool, so that the deployment client can add a configuration file to the target location of the agent program.
  • the corresponding configuration file is overwritten directly in the agent program, resulting in the loss of the original configuration file, which affects the abnormality of modules that implement corresponding functions based on the original configuration file.
  • This application can guarantee the reliability of the operation of the deployment client.
  • the embodiment of the present application provides an agent deployment method based on an automated operation and maintenance tool.
  • the method includes: deploying the automated operation and maintenance tool installed on the server side, and sending a detection instruction to the deployment client;
  • the detection instruction detects that the authentication configuration file is included locally, and the authentication file contains a preset sentence, generates a detection pass notification, and sends the detection pass notification to the deployment server;
  • the deployment server After receiving the notification of passing the detection, an installation agent instruction is sent to the deployment client based on the automated operation and maintenance tool;
  • the deployment client obtains the agent software package from the software package manager according to the installation agent instruction and installs the agent program ;
  • the deployment server Based on the automated operation and maintenance tool, the deployment server detects that the deployment client is successfully installed, and then sends a host name change command to the deployment client;
  • the deployment client sends the first host name change command to the deployment client according to the host change command
  • the host name is changed to a second host name, the first host name is the original host name of the deployment
  • the deployment server directly instructs the deployment client to install the agent program according to the local IP of the deployment client.
  • this application does not need to build a traditional publishing system, which can effectively reduce the deployment workload and preparation period, and improve deployment efficiency.
  • the deployment client detect that the local authentication configuration file is included according to the detection instruction, and the authentication file includes default statements.
  • the default statement is the default statement of the authentication configuration file
  • the business reliability of the deployed client can be effectively improved.
  • the embodiment of the present application provides an agent deployment device based on an automated operation and maintenance tool, which includes:
  • the processing module is used for installation-based automated operation and maintenance tools, and sends detection instructions to the deployment client through the sending module;
  • the processing module After the processing module receives the detection pass notification through the receiving module, based on the automated operation and maintenance tool, it sends an installation agent instruction to the deployment client through the sending module; the installation agent instruction is used to instruct the deployment client Get the agent package from the package manager and install the agent.
  • the embodiment of the present application also provides a computing device, including: a memory for storing programs; a processor for invoking the programs stored in the memory, and executing the obtained programs according to the first aspect and the second aspect. Aspects of the various possible designs are described in the method.
  • the embodiment of the present application also provides a computer-readable non-volatile storage medium, including a computer-readable program.
  • a computer-readable program When the computer reads and executes the computer-readable program, the computer executes the computer-readable program described in the first aspect and The method described in various possible designs of the second aspect.
  • FIG. 1 is a schematic diagram of the architecture of agent deployment based on automated operation and maintenance tools provided by the embodiment of the present application;
  • FIG. 2 is a schematic diagram of the architecture of agent deployment based on automated operation and maintenance tools provided by the embodiment of the present application;
  • FIG. 3 is a schematic flow diagram of an agent deployment method based on an automated operation and maintenance tool provided in an embodiment of the present application
  • FIG. 4 is a schematic flow diagram of an agent deployment method based on an automated operation and maintenance tool provided in an embodiment of the present application
  • FIG. 5 is a schematic diagram of an agent deployment device based on an automated operation and maintenance tool provided in an embodiment of the present application
  • FIG. 6 is a schematic diagram of an apparatus for deploying an agent based on an automated operation and maintenance tool according to an embodiment of the present application.
  • Fig. 1 is a system architecture of agent deployment based on automated operation and maintenance tools provided by the embodiment of the present application, wherein the deployment server is installed with automated operation and maintenance tools, and may also include information such as the IP address of each deployment client. For example, record the IP addresses of each deployment client through the IP address list. Then the deployment server can send detection instructions to the deployment client corresponding to the IP address based on the automated operation and maintenance tool. After the deployment client receives the detection instruction, it detects whether the deployment client can perform the agent deployment process according to the detection instruction. If the detection fails, the agent deployment process will not be executed, and an alarm can be generated to the staff; Detections are sent to the deployment server via notifications.
  • the deployment server is installed with automated operation and maintenance tools, and may also include information such as the IP address of each deployment client. For example, record the IP addresses of each deployment client through the IP address list. Then the deployment server can send detection instructions to the deployment client corresponding to the IP address based on the automated operation and maintenance tool. After the deployment client receives the detection instruction,
  • the deployment server After receiving the detection pass notification, the deployment server sends installation agent instructions to the deployment client based on the automated operation and maintenance tool, and sets a corresponding monitoring process for each deployment client to monitor the installation status of the deployment client in real time.
  • the deployment client After the deployment client receives the installation agent instruction, it downloads the agent software package from the package manager; if the installation of the agent program fails or is abnormal, the deployment server detects the installation failure or abnormal state, and sends an end message to the deployment client.
  • An installation instruction otherwise, after the deployment server monitors that the agent program is installed successfully, it sends a host name change instruction to the deployment client, and also sends an address addition instruction to the deployment client.
  • the deployment client changes the host name according to the host name change instruction, and after receiving the address addition instruction to add the domain name and IP address of the management server to the domain name file, the deployment client initiates authentication to the management server and completes the registration.
  • the deployment server determines that the registration status of the deployment client is the registration completed state, and then sends a test instruction, so that the deployment client tests whether the registration between the deployment client and the management server is successful.
  • After the deployment server obtains the registration result of the deployment client it restores the host name in the preset format of the deployment client to the original host name. What needs to be explained here is that no matter whether the registration result is successful or failed, the host name of the final deployment client must be restored to the original host name to ensure the normal operation of other services in the deployment client.
  • an automated operation and maintenance tool is provided in the deployment server, which can instruct the deployment client to execute the agent deployment process during the agent program installation process; compared with the need to build a publishing system in the prior art, this application There is no need to build a release system in advance, which can effectively reduce the agent deployment workload and preparation cycle, and improve deployment efficiency.
  • the embodiment of the present application also provides a system framework for agent deployment based on automated operation and maintenance tools, as shown in Figure 2, the automated operation and maintenance tool set by the deployment server is Ansiblee; the management server is provided with FreeIPA; the software package manager It is Yum (Yellow dog Updater, Modified, a front-end package manager), which contains the agent software package required for deploying the client; the deployment client includes the client of the FreeIPA system and the front-end of the Yum system, and the agent is SSSD Daemon.
  • the automated operation and maintenance tool set by the deployment server is Ansiblee
  • the management server is provided with FreeIPA
  • the software package manager It It is Yum (Yellow dog Updater, Modified, a front-end package manager), which contains the agent software package required for deploying the client
  • the deployment client includes the client of the FreeIPA system and the front-end of the Yum system, and the agent is SSSD Daemon.
  • the embodiment of the present application provides an agent deployment method process based on automated operation and maintenance tools, as shown in Figure 3, including:
  • Step 301 the deployment server sends detection instructions to the deployment client based on the installed automated operation and maintenance tool
  • the automated operation and maintenance tool included in the deployment server includes the IP addresses of each deployment client. For example, there is an IP address record or IP address list, and the automated operation and maintenance tool traverses the IP address record or IP address list.
  • a detection instruction is sent to each deployment client respectively; the detection instruction is used to instruct the deployment client to detect whether it has a deployment agent program and to register. For example, it can be used to instruct the deployment client to check whether its own configuration file contains relevant default statements; if the configuration file is generated by the kerberos protocol (computer network authorization protocol), the deployment client needs to use the kerberos protocol for authentication during the registration process.
  • the kerberos protocol computer network authorization protocol
  • the configuration file of the deployment client contains this For the first default statement, it is necessary to further determine whether the configuration file contains the second default statement kerberos.example.com; the second default statement is kerberos.example.com, which is used to determine whether the configuration file is the default , if the configuration file contains the second default statement, it can be determined that no other service is applying this configuration file; in this example, if the configuration file contains the first default statement but not the second default statement, then The configuration file representing the deployment client is applied by other services. If the agent deployment process continues, there is a high probability that other services will be abnormal. If the detection determines that the configuration file of the deployment client contains the first preset statement and the second If the default statement is used, it is determined that the test is passed.
  • the deployment server can execute cat /etc/krb5.conf
  • Step 302 after the deployment server receives the detection pass notification, it sends an installation agent instruction to the deployment client based on the automated operation and maintenance tool; the installation agent instruction is used to instruct the deployment client to download from the software package manager Get the agent package and install the agent;
  • the package manager is Yum (full name Yellow dog Updater, Modified); then the deployment server uses Ansiblee's yum module to send installation agent instructions to the deployment client, so that the deployment client obtains from the management server Proxy package.
  • the deployment server can monitor the yum system in the deployment client and management server through Ansiblee. If the yum system is abnormal, it can be repaired directly. If it cannot be repaired, an alarm will be generated.
  • the agent software package can also contain other software packages, such as SUDO, a program for generating instructions. After the installation is completed, the agent program can update SUDO to new.
  • Step 303 the deployment server changes the first host name to a second host name based on the automated operation and maintenance tool, the first host name is the original host name of the deployment client, and the second host name is the hostname in the preset format;
  • the host name in the preset format can be the basic information for deploying the client, such as domain name, IP address, operator, etc., which can be set according to specific needs, and the specific setting method of the preset format is not limited here.
  • Step 304 the deployment server obtains the registration result of the deployment client on the management server based on the automated operation and maintenance tool
  • Step 305 the deployment server restores the second host name to the first host name based on the automated operation and maintenance tool.
  • the recovery mechanism of 'reverting the second host name to the first host name' can be set as a relief mechanism, that is, no matter whether the previous program execution succeeds or fails, or any abnormality occurs, etc., In the end, the host name in the preset format must be restored to the original host name to ensure the normal operation of other services in the deployed client.
  • the deployment server directly instructs the deployment client to install the agent program according to the local IP of the deployment client.
  • this application does not need to build a traditional publishing system, which can effectively reduce the deployment workload and preparation period, and improve deployment efficiency.
  • detecting the installation condition of the agent program on the deployment client can ensure the normal operation of the agent program on the deployment client.
  • the deployment server changes the original host name of the deployment client to a host name in a preset format, and restores the host name to the original host name after obtaining the registration result of the deployment client on the management server.
  • the host name of each deployment client in the management server is a host name in a preset format, and the preset format can be set as required, so that the management server can manage each deployment client.
  • restoring the host name to the original host name can also prevent other services from being abnormal due to the change of the host name when the original host name is applied to other services. That is, in the case of ensuring the normal operation of each service of the deployed client, the convenience of managing the deployed client is improved.
  • An embodiment of the present application provides an agent deployment method based on an automated operation and maintenance tool. After sending an installation agent instruction to the deployment client, it further includes: the deployment server monitors the deployment based on the automated operation and maintenance tool. The installation status of the client; if the installation is not successful within a preset period of time, an instruction to end the installation is sent to the deployment client based on the automated operation and maintenance tool.
  • the deployment client after the deployment client receives the installation agent instruction, it obtains and installs the agent software package from the management server based on the installation agent instruction; and the deployment server generates a corresponding monitoring process for each deployment client after sending the installation agent instruction , monitor the status of the deployment client installation agent program, if the deployment client does not complete the installation within the preset time, then send an end installation instruction, so that the deployment client ends the installation of the agent program and records the deployment client. In this way, it can be confirmed in time that the deployment client is in an abnormal state, and it can also prevent the deployment client from continuously trying to connect to the management server, causing the task to be stuck and wasting network resources.
  • Ansiblee After the deployment server Ansiblee sends the installation agent command, Ansiblee will run all the deployment client installation agent tasks at one time, and throw all the deployment client installation agent tasks to the background for execution.
  • Each installation agent task has one job_id, Ansiblee polls and detects the execution status of the installation agent task at regular intervals according to the job_id until it detects that the execution of the installation agent task ends. For example, if the installation agent task is up to 30 seconds, Ansiblee will wait for the installation agent task for up to 30 seconds, and check the execution result of the installation agent task every 5 seconds. If the installation is not successful after 30 seconds, then the The installation status of the deployment client installation agent is failure; the deployment server sends an instruction to end the installation to the deployment client, and can also record relevant abnormal conditions and generate an alarm.
  • An embodiment of the present application provides an agent deployment method based on an automated operation and maintenance tool, wherein the deployment server changes the first host name to a second host name based on the automated operation and maintenance tool, including: the deployment server Based on the automated operation and maintenance tool, after detecting that the deployment client is successfully installed, a host name change instruction is sent; the host name change instruction is used to instruct the deployment client to use the second host name as the host of the deployment client name;
  • the deployment server restores the second host name to the first host name based on the automated operation and maintenance tool, including:
  • the deployment server sends a host name restoration instruction to the deployment client based on the automated operation and maintenance tool; the host name restoration instruction is used to instruct the deployment client to update the first host name to the deployment client
  • the hostname of the client is a preset format. For example, IP address + domain name.
  • the deployment server After registration and other related processes between the management server and the deployment client are completed, the deployment server sends a host name restoration command to the deployment client to restore the first host name to the second host name. In this way, the change of the host name is prevented from causing abnormalities in other services that depend on the first host name.
  • Ansible generates a registration command and sends it to the deployment client.
  • the client runs the agent program ipa-client-install to start the registration process.
  • Ansible instructs the deployment client to change the original host name to the host name in the preset format through the host name change command: IP address + domain name, and calls ipa-client-install to obtain the second host name of the machine, and the second
  • the host name is sent to the management server as the identification of the deployment client in the management server.
  • ipa-client-install record the corresponding relationship between the first host name and the second host name, set a temporary second host name, and send the second host name to the management server.
  • An embodiment of the present application provides an address addition method. After sending the installation agent instruction to the deployment client, it further includes: the deployment server sends an address addition instruction to the deployment client based on the automated operation and maintenance tool. , the address addition instruction includes a search instruction, and the address addition instruction is used to instruct the deployment client to add the domain name file in the domain name file when it confirms that the domain name file does not contain the domain name and IP address of the management server according to the search instruction. Add the domain name and IP address of the management server to .
  • the deployment server sends an address addition command to the deployment client based on the automated operation and maintenance tool. After receiving the address and adding the command, the deployment client adds the domain name and IP address of the management server in the address addition command to the domain name.
  • the target location of the file In this way, it is prevented that other domain names and IPs are directly replaced in the domain name file, resulting in the loss of the configuration of the deployment client, which may cause abnormal situations in the deployment client.
  • the deployment client's dependence on the domain name server can be reduced.
  • the deployment server uses the linefile module of Ansiblee to implement the address addition of the domain name file /etc/hosts file in the deployment client; and the corresponding search command can be set in the address addition command, if the target location of the domain name file already contains For the IP address and domain name, there is no need to add the address repeatedly. In this way, even if the address adding action is executed multiple times, it will not result in unlimited addition of IP addresses and domain names in the domain name file.
  • An embodiment of the present application provides an authentication method. After sending an address addition instruction to the deployment client, it further includes: the deployment server sends a registration instruction to the deployment client based on the automated operation and maintenance tool, The registration instruction is used to instruct the deployment client to add the domain name and IP address of the management server to the authentication configuration file, and to authenticate the management server according to the authentication configuration file. That is to say, the deployment client adds the domain name and IP address of the management server in the domain name file to the authentication configuration file according to the registration instruction, so as to authenticate the management server according to the authentication configuration file. In this way, the reliability of authentication between the deployment client and the management server is guaranteed.
  • An embodiment of the present application provides a registration method, wherein the deployment server acquires the registration result of the deployment client on the management server based on the automated operation and maintenance tool, including: the deployment server obtains the registration result of the deployment client based on the automated operation and maintenance tool A tool for obtaining the registration completion status of the deployment client, and then sending a test instruction to the deployment client, where the test instruction is used to instruct the deployment client to test whether the registration with the management server is successful.
  • the deployment server sends a test command to the deployment client to test whether the deployment client is successfully registered; the deployment client can execute the id username command; if the management server can accurately receive the execution id username command of the deployment client , and return the information corresponding to the user name, it means that the registration is successful; if the deployment client confirms that the received information is empty and displays nosuch user information, it means that the registration has failed.
  • the embodiment of the present application provides a configuration change method, after sending the installation agent instruction to the deployment client, it further includes: the deployment server obtains the successful registration status of the deployment client based on the automated operation and maintenance tool, The deployment server sends a configuration change instruction to the deployment client based on the automated operation and maintenance tool, and the configuration change instruction is used to instruct the deployment client to add a configuration file at the target location of the agent program. That is to say, when the deployment server determines that the registration between the deployment client and the management server is successful, it can also change the configuration in the deployment client through a configuration change command, and the modification method is to add a configuration file to the target location of the agent. In this way, the integrity of the configuration in the deployment client can be ensured and the loss of configuration files can be prevented.
  • the embodiment of the present application provides an agent deployment method flow based on an automated operation and maintenance tool, as shown in FIG. 4 , including:
  • Step 401 the deployment server generates a detection instruction based on the installed automatic operation and maintenance tool, and sends the detection instruction to the deployment client.
  • Step 402 After receiving the detection instruction, the deployment client detects whether it meets the conditions for installing the agent, and if so, generates a detection notification and sends it to the deployment server; if it does not meet the conditions for installing the agent, the process ends.
  • Step 403 after receiving the detection pass notification, the deployment server generates an installation agent instruction based on the automated operation and maintenance tool.
  • Step 404 the deployment server generates a monitoring process for the deployment client; the detection frequency is set in the monitoring process, and the installation status of the deployment client agent is detected with the detection frequency, and if the installation of the deployment client agent fails, the installation is terminated program; and a preset time period is also set in the monitoring process, if within the preset time period, the deployment client has not yet completed the installation of the agent program, the installation program will end and an alarm will be generated.
  • Step 405 the deployment server sends the installation agent instruction to the deployment client.
  • Step 406 the deployment client generates an agent software package loading request according to the installation agent instruction, and sends it to the software package manager.
  • Step 407 After receiving the proxy software package loading request, the software package manager sends the proxy software package to the deployment client.
  • Step 408 the deployment client receives the agent software package, and installs the agent program.
  • Step 409 After the deployment server detects that the agent program of the deployment client is installed successfully, it generates a host name change instruction, and sends the host name change instruction to the deployment client.
  • Step 410 the deployment client changes the first host name to the second host name according to the host name change instruction, and records the correspondence between the first host name and the second host name.
  • Step 411 the deployment server generates an address addition instruction, and sends it to the deployment client.
  • Step 412 After receiving the address addition instruction, the deployment client appends the domain name and IP address of the management server to the target location of the domain name file according to the address addition instruction, wherein the address addition instruction may include a search instruction for finding whether the target location has Contains the domain name and IP address of the management server to prevent repeated additions and waste of network resources.
  • the address addition instruction may include a search instruction for finding whether the target location has Contains the domain name and IP address of the management server to prevent repeated additions and waste of network resources.
  • Step 413 the deployment server generates a registration instruction and sends it to the deployment client.
  • Step 414 After receiving the registration instruction, the deployment client adds the domain name and IP address of the management server to the authentication configuration file.
  • Step 415 the deployment client sends registration information including its own IP address and second host name to the management server according to the domain name and IP address of the management server.
  • Step 416 the management server receives and records the registration information sent by the deployment client.
  • Step 417 the deployment server sends a test command to the deployment client.
  • Step 418 After receiving the test instruction, the deployment client executes the ID user name instruction, and sends the ID user name instruction to the management server.
  • Step 419 the management server generates corresponding reply information according to the ID username command, and sends the reply information to the deployment client.
  • Step 420 if the reply information received by the deployment client is empty, then it is determined that the registration fails; if the received reply information is not empty, the registration is successful.
  • Step 421 the deployment server detects the registration result of the deployment client, and instructs the deployment client to restore the second hostname to the first hostname.
  • Step 422 the deployment server sends a configuration change instruction to the deployment client.
  • Step 423 the deployment client appends a configuration file to the target location of the agent program according to the configuration change instruction.
  • step 409 and step 410 can be performed before and after any step from step 411 to step 414; step 404 can be performed before step 405 or after step 405. Therefore, the above process steps are just an example, and do not limit the specific implementation of this solution.
  • FIG. includes:
  • the processing module 501 is used to send detection instructions to the deployment client through the sending module 502 based on the installed automated operation and maintenance tool;
  • the processing module 501 After the processing module 501 receives the detection pass notification through the receiving module 503, based on the automated operation and maintenance tool, it sends an installation agent instruction to the deployment client through the sending module 502; the installation agent instruction is used to instruct the The deployment client fetches the agent package from the package manager and installs the agent;
  • the processing module 501 changes the first host name to a second host name based on the automated operation and maintenance tool, the first host name is the original host name of the deployment client, and the second host name is preset format; the processing module 501 obtains the registration result of the deployment client in the management server based on the automated operation and maintenance tool; the processing module 501 obtains the second host based on the automated operation and maintenance tool name reverts to the first hostname.
  • the processing module 501 is further configured to: monitor the installation status of the deployment client based on the automated operation and maintenance tool; if the installation is not successful within a preset period of time, based on the automated operation and maintenance tool, through The sending module 502 sends an installation end instruction to the deployment client.
  • the processing module 501 is configured to: based on the automated operation and maintenance tool, after detecting that the deployment client is successfully installed, send a hostname change instruction through the sending module 502; the hostname change instruction is used to Instructing the deployment client to use the second host name as the host name of the deployment client; the second host name is a host name in a preset format; the processing module 501 is based on the automated operation and maintenance tool, through the The sending module 502 sends a hostname recovery instruction to the deployment client; the hostname recovery instruction is used to instruct the deployment client to update the first hostname to the hostname of the deployment client; the first hostname The original hostname for the deployment client.
  • the processing module 501 is further configured to: based on the automated operation and maintenance tool, send an address addition instruction to the deployment client through the sending module 502, the address addition instruction includes a search instruction, and the The address addition instruction is used to instruct the deployment client to add the domain name and IP address of the management server to the domain name file when confirming that the domain name file does not contain the domain name and IP address of the management server according to the search instruction.
  • the processing module 501 is further configured to: based on the automated operation and maintenance tool, send a registration instruction to the deployment client through the sending module 502, the registration instruction is used to instruct the deployment client to
  • the domain name and IP address of the management server are added to the authentication configuration file, and the management server is authenticated according to the authentication configuration file.
  • the processing module 501 is further configured to: obtain the registration completion status of the deployment client based on the automated operation and maintenance tool, and send a test instruction to the deployment client through the sending module 502, the The test instruction is used to instruct the deployment client to test whether the registration on the management server is successful.
  • the processing module 501 is further configured to: obtain the successful registration status of the deployment client based on the automated operation and maintenance tool, and the processing module 501 uses the sending module 502 based on the automated operation and maintenance tool Sending a configuration change instruction to the deployment client, where the configuration change instruction is used to instruct the deployment client to add a configuration file at the target location of the agent program.
  • an embodiment of the present application provides a device for deploying an agent based on an automated operation and maintenance tool.
  • FIG. including: the processing module 601 is used for the installation-based automated operation and maintenance tool, and sends a detection instruction to the deployment client through the sending module 602; the processing module 601 detects that the local authentication configuration file is included according to the detection instruction, and the authentication The right configuration file contains preset sentences, generates a notification of passing the detection, and sends the notification of passing the detection to the deployment server through the sending module 602; after receiving the notification of passing the detection through the receiving module 603, the sending Module 602 sends an installation agent instruction to the deployment client based on the automated operation and maintenance tool; the processing module 601 obtains an agent software package from the software package manager according to the installation agent instruction and installs an agent program; the processing module 601 Based on the automated operation and maintenance tool, after detecting that the deployment client is successfully installed, the sending module 602 sends a host name change command to the deployment client; the processing module 601 sends the
  • the host name is changed to a second host name, the first host name is the original host name of the deployment client, and the second host name is a host name in a preset format;
  • the processing module 601 registers with the management server, And obtain the registration result;
  • the processing module 601 obtains the registration result of the deployment client on the management server based on the automatic operation and maintenance tool, and restores the second host name to the first host name.
  • the embodiments of the present application may be provided as methods, systems, or computer program products. Accordingly, the present application may take the form of an entirely hardware embodiment, an entirely software embodiment, or an embodiment combining software and hardware aspects. Furthermore, the present application may take the form of a computer program product embodied on one or more computer-usable storage media (including but not limited to disk storage, CD-ROM, optical storage, etc.) having computer-usable program code embodied therein.
  • computer-usable storage media including but not limited to disk storage, CD-ROM, optical storage, etc.
  • These computer program instructions may also be stored in a computer-readable memory capable of directing a computer or other programmable data processing apparatus to operate in a specific manner, such that the instructions stored in the computer-readable memory produce an article of manufacture comprising instruction means, the instructions
  • the device realizes the function specified in one or more procedures of the flowchart and/or one or more blocks of the block diagram.

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Software Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Theoretical Computer Science (AREA)
  • Physics & Mathematics (AREA)
  • General Physics & Mathematics (AREA)
  • Stored Programmes (AREA)

Abstract

Des modes de réalisation de la présente demande concernent un procédé et un appareil de déploiement de proxy basés sur un outil de maintenance et d'exploitation automatisé. Le procédé comprend les étapes suivantes : un serveur de déploiement envoie une instruction de détection à un client de déploiement sur la base d'un outil de maintenance et d'exploitation automatisé installé; le serveur de déploiement reçoit une notification indiquant que la détection est réussie, puis envoie une instruction de proxy d'installation au client de déploiement sur la base de l'outil de maintenance et d'exploitation automatisé, l'instruction de proxy d'installation étant utilisée pour ordonner au client de déploiement d'obtenir un progiciel de proxy depuis un gestionnaire de progiciel et d'installer un programme de proxy; le serveur de déploiement modifie un nom d'hôte d'origine du client de déploiement en un nom d'hôte d'un format prédéfini sur la base de l'outil de maintenance et d'exploitation automatisé; le serveur de déploiement obtient un résultat d'enregistrement du client de déploiement dans un serveur de gestion sur la base de l'outil de maintenance et d'exploitation automatisé; et le serveur de déploiement restaure le nom d'hôte selon le nom d'hôte d'origine sur la base de l'outil de maintenance et d'exploitation automatisé. Le procédé décrit peut efficacement réduire la charge de travail de déploiement et la période de préparation et accroître l'efficacité de déploiement sur la base de l'accroissement de la simplicité de la gestion client.
PCT/CN2021/141134 2021-06-22 2021-12-24 Procédé et appareil de déploiement de proxy basés sur un outil de maintenance et d'exploitation automatisé WO2022267407A1 (fr)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN202110691764.X 2021-06-22
CN202110691764.XA CN113438292A (zh) 2021-06-22 2021-06-22 一种基于自动化运维工具的代理部署方法及装置

Publications (1)

Publication Number Publication Date
WO2022267407A1 true WO2022267407A1 (fr) 2022-12-29

Family

ID=77756995

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2021/141134 WO2022267407A1 (fr) 2021-06-22 2021-12-24 Procédé et appareil de déploiement de proxy basés sur un outil de maintenance et d'exploitation automatisé

Country Status (2)

Country Link
CN (1) CN113438292A (fr)
WO (1) WO2022267407A1 (fr)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN116647434A (zh) * 2023-07-24 2023-08-25 国网瑞嘉(天津)智能机器人有限公司 运维服务部署方法、装置及运维系统

Families Citing this family (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN113438292A (zh) * 2021-06-22 2021-09-24 深圳前海微众银行股份有限公司 一种基于自动化运维工具的代理部署方法及装置
CN115002067A (zh) * 2022-04-19 2022-09-02 深圳市共进电子股份有限公司 客户端主机名处理方法、装置、系统、设备及介质

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN110750273A (zh) * 2019-10-14 2020-02-04 交控科技股份有限公司 云平台自动部署方法及系统
US20200379435A1 (en) * 2019-05-29 2020-12-03 Atos It Services Uk Limited Method and electronic generation device for generating at least one configuration file for an automation tool, related computer program
CN112947951A (zh) * 2021-03-26 2021-06-11 深圳云之家网络有限公司 一种软件安装方法及相关设备
CN113438292A (zh) * 2021-06-22 2021-09-24 深圳前海微众银行股份有限公司 一种基于自动化运维工具的代理部署方法及装置

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20200379435A1 (en) * 2019-05-29 2020-12-03 Atos It Services Uk Limited Method and electronic generation device for generating at least one configuration file for an automation tool, related computer program
CN110750273A (zh) * 2019-10-14 2020-02-04 交控科技股份有限公司 云平台自动部署方法及系统
CN112947951A (zh) * 2021-03-26 2021-06-11 深圳云之家网络有限公司 一种软件安装方法及相关设备
CN113438292A (zh) * 2021-06-22 2021-09-24 深圳前海微众银行股份有限公司 一种基于自动化运维工具的代理部署方法及装置

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
FRENAUD: "V4/ClientInstallationWithAnsible", 12 September 2017 (2017-09-12), XP093016371, Retrieved from the Internet <URL:https://www.freeipa.org/page/V4/ClientInstallationWithAnsible> [retrieved on 20230123] *

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN116647434A (zh) * 2023-07-24 2023-08-25 国网瑞嘉(天津)智能机器人有限公司 运维服务部署方法、装置及运维系统
CN116647434B (zh) * 2023-07-24 2023-10-20 国网瑞嘉(天津)智能机器人有限公司 运维服务部署方法、装置及运维系统

Also Published As

Publication number Publication date
CN113438292A (zh) 2021-09-24

Similar Documents

Publication Publication Date Title
WO2022267407A1 (fr) Procédé et appareil de déploiement de proxy basés sur un outil de maintenance et d&#39;exploitation automatisé
CN110647580B (zh) 分布式容器集群镜像管理主节点、从节点、系统及方法
US9253265B2 (en) Hot pluggable extensions for access management system
US8775577B1 (en) System and method for configuration management service
WO2019184164A1 (fr) Procédé de déploiement automatique de nœud travailleur de kubernetes, dispositif, appareil terminal et support de stockage lisible
US8910129B1 (en) Scalable control system for test execution and monitoring utilizing multiple processors
US20070294376A1 (en) Method, apparatus and program product for software provisioning
US10797952B1 (en) Intelligent rollback analysis of configuration changes
JP2006520975A (ja) 非侵入な自動オフサイト・パッチ・フィンガプリンティングおよびアップデーティングシステム、および方法
US10796001B2 (en) Software verification method and apparatus
US7624309B2 (en) Automated client recovery and service ticketing
CN111045854B (zh) 用于管理服务容器的方法、设备和计算机可读介质
US6804773B1 (en) System and method for transferring information over a network
JP2006107500A (ja) ソフトウェアの実行中にソフトウェアを更新すること
US11231919B2 (en) Live updates of stateful components
US20210306242A1 (en) Non-intrusive it device monitoring and performing action based on it device state
US10331418B2 (en) State machine representation of a development environment deployment process
WO2020123693A1 (fr) Jeton de commande et commande dynamique hiérarchique
CN113569285A (zh) 身份认证与鉴权的方法、装置、系统、设备及存储介质
US9134983B2 (en) Uniquely identifying a machine
CN113760339A (zh) 漏洞修复方法和装置
US9348849B1 (en) Backup client zero-management
US10949306B2 (en) System and method of a cloud service provider virtual machine recovery
US7350065B2 (en) Method, apparatus and program storage device for providing a remote power reset at a remote server through a network connection
US20220350628A1 (en) Managed virtual machines

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 21946881

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE