BEGIN:VCALENDAR
VERSION:2.0
PRODID:-//pretalx//pretalx.com//devconf-cz-2024//speaker//37E7SN
BEGIN:VTIMEZONE
TZID:CET
BEGIN:STANDARD
DTSTART:20001029T040000
RRULE:FREQ=YEARLY;BYDAY=-1SU;BYMONTH=10
TZNAME:CET
TZOFFSETFROM:+0200
TZOFFSETTO:+0100
END:STANDARD
BEGIN:DAYLIGHT
DTSTART:20000326T030000
RRULE:FREQ=YEARLY;BYDAY=-1SU;BYMONTH=3
TZNAME:CEST
TZOFFSETFROM:+0100
TZOFFSETTO:+0200
END:DAYLIGHT
END:VTIMEZONE
BEGIN:VEVENT
UID:pretalx-devconf-cz-2024-L3NU3B@pretalx.com
DTSTART;TZID=CET:20240613T153000
DTEND;TZID=CET:20240613T160500
DESCRIPTION:Automating OpenShift VMs Compliance with Knative and Tekton the
  cloud-native way\n\nIntroduction\n\nBackground\nIn the rapidly evolving l
 andscape of cloud computing\, virtual machine (VM) provisioning in OpenShi
 ft environments has become increasingly streamlined. However\, compliance 
 tasks often remain a bottleneck\, characterized by manual interventions\, 
 time-consuming configurations\, and a high potential for human error. Thes
 e challenges undermine the efficiency gains achieved through modern provis
 ioning processes.\n\nObjective\nThis project aims to revolutionize the VM 
 compliance automation phase by automating these tasks using Knative and Te
 kton. Our goal is to enhance operational efficiency and reliability in man
 aging OpenShift VIrtualization environments.\n\nProblem Statement\n\nCurre
 nt compliance processes often involve cumbersome manual steps\, leading to
  significant delays and high error rates. These include configuring networ
 k settings\, installing software\, and applying security patches.\n\nImpac
 t\nThese inefficiencies adversely affect resource utilization and operatio
 nal costs\, while increasing the likelihood of human error\, thereby compr
 omising system integrity and performance.\n\nProposed Solution\n\nOverview
 \nWe propose a solution that leverages Knative to trigger Tekton pipelines
 \, automating the compliance tasks in OpenShift environments.\n\nHow It Wo
 rks\nUpon VM creation\, a Knative trigger will send the VM payload to a Te
 kton EventListener. This event triggers a Tekton pipeline\, which is pre-c
 onfigured to execute a series of compliance tasks automatically via Ansibl
 e.\n\nTechnologies Used\n- OpenShift: A Kubernetes distribution that simpl
 ifies the management of Kubernetes clusters\, providing a robust foundatio
 n for this solution.\n- Knative: An event-driven framework that facilitate
 s serverless workloads in Kubernetes\, crucial for triggering automated wo
 rkflows.\n- Tekton: A powerful Kubernetes-native CI/CD framework\, used he
 re to create and manage the pipelines executing post-provisioning tasks.\n
 - Ansible: Ansible is a suite of software tools that enables configuration
  as code. It is open-source and the suite includes software provisioning\,
  configuration management\, and application deployment functionality.\n\nI
 mplementation\n\nArchitecture Diagram\nA diagram will be provided to visua
 lly represent the workflow from VM creation to task completion.\n\n\nStep-
 by-Step Process\nThe concept involves the creation of a Tekton pipeline wh
 enever a VM is created/deleted. This pipeline accesses a configmap and sub
 sequently executes automation tasks on the VM.\n\nIt is essential for the 
 VM to have an annotation indicating the configmap's name.\n\nBenefits\n\n-
  Efficiency: Significantly reduces the time required for post-provisioning
  tasks.\n- Reliability: Minimizes human error through automation.\n- Scala
 bility: Easily adapts to increasing infrastructure demands.\n- Cost-Effect
 iveness: Reduces manpower requirements and operational costs.\n\nConclusio
 n\n\nThis proposal outlines a transformative approach to managing complian
 ce tasks in OpenShift VM environments. By leveraging Knative and Tekton\, 
 we can significantly enhance efficiency\, reliability\, scalability\, and 
 cost-effectiveness.\n\nQ&A / Discussion Points\n\n- How does this solution
  integrate with existing CI/CD pipelines?\n- Can this framework support co
 mplex\, multi-step provisioning tasks?\n- How does this approach ensure se
 curity and compliance during the automation process?\n- What are the limit
 ations of this solution in its current form?\n- How can this solution be a
 dapted for hybrid or multi-cloud environments?
DTSTAMP:20260608T014933Z
LOCATION:E104 (capacity 72)
SUMMARY:Cloud-Native Security Simplified: Automating OpenShift VM Complianc
 e with Knative\, Tekton and Ansible - Jose Angel Morena Simon
URL:https://pretalx.com/devconf-cz-2024/talk/L3NU3B/
END:VEVENT
END:VCALENDAR