Hackweek 20 Open Door - Support Windows clients in Uyuni/SUSE Manager

Hackweek 20 Open Door - Support Windows clients in Uyuni/SUSE Manager

• 1.
  Copyright © SUSE2021 Hack Week 20 Open Door Uyuni/SUMA: support Windows clients 5 M A R C H 2 0 2 1 Pau Garcia Quiles Product Owner & Technical Project Manager, SUSE Manager [email protected]
• 2.
  Copyright © SUSE2021 — Systems management solution: • Power management • Provisioning • Deployment • Installation • Patching • Content management • Configuration management • Security (SCAP/CVE audit) — Supports all major Linux clients: SLES, RHEL (and clones), Ubuntu, Debian — Powered by Salt — Also: virtualization (powered by Salt/libvirt), OS and container image building — Largest documented deployment with 1 Server: 35K clients 2 Quick intro to Uyuni/SUSE Manager
• 3.
  Copyright © SUSE2021 3 Classic client/server architecture Proxy Server Client SUSE Customer Center Third Party Repository Custom repository
• 4.
  Copyright © SUSE2021 — Java — Python — PostgreSQL — React (UI) — XML-RPC API — Operating system: • Uyuni runs on openSUSE Leap (community port to CentOS in the works) • SUSE Manager runs on SLES 4 Technology stack
• 5.
  Copyright © SUSE2021 — Uyuni Server looks like a Windows Server Update Services (WSUS) Server to Windows clients — Salt minion used as the agent — Basic features (patching, installing, content mirroring & staging, CVE audit, configuration management, etc) work — No Chocolatey or alike 5 Goal
• 6.
  Copyright © SUSE2021 — Windows added to database, Java, Python, Salt bootstrap, etc — Ported Microsoft Update protocolo server-server and client-server reference implementations to Linux: downloading of Windows updates and CVE information works! — Salt packages for Windows built locally — Bootstrapping clients starts but does not work. Problem seems to be some missing enablement/grain on the Java side. 6 Status as of Hackweek 19 (last year)
• 7.
  Copyright © SUSE2021 — Windows added to database, Java, Python, Salt bootstrap, etc • Action: update code to latest master branch — Ported Microsoft Update protocolo server-server and client-server reference implementations to Linux: downloading of Windows updates and CVE information works! • Action: download updates to the right path on the Server and insert metadata into the database — Salt packages for Windows built locally • Action: build Salt for Windows in OBS — Bootstrapping clients starts but does not work. Problem seems to be some missing enablement/grain on the Java side. • Action: fix. Related to first item. 7 Hackweek 20: update and complete last year’s work
• 8.
  Copyright © SUSE2021 — Call Microsoft Update server-server from spacewalk-reposync/mgr-sync on a schedule — Create bootstrap repository • Should be easy — Implement Server-driven bootstrap • Requires WMI, winexe or alike, since there is no salt-ssh on Windows — Virtualization: support Hyper-V • Requires Hyper-V-enabled libvirt and some enablement in Salt. — OpenSCAP • Provide OpenSCAP scanner and content. Requires some management before. 8 Round 2
• 9.
  Copyright © SUSE2021 — Provisioning • Requires latest version of cobbler, not yet available in Uyuni/SUSE Manager. Lower priority. — Image building • Requires some management before. Lower prioritary. 9 Round 3
• 10.
  Copyright © SUSE2021 Copyright © SUSE 2021 Q&A
• 11.
  Copyright © SUSE2021 © 2020 SUSE LLC. All Rights Reserved. SUSE and the SUSE logo are registered trademarks of SUSE LLC in the United States and other countries. All third-party trademarks are the property of their respective owners. For more information, contact SUSE at: +1 800 796 3700 (U.S./Canada) +49 (0)911-740 53-0 (Worldwide) Maxfeldstrasse 5 90409 Nuremberg www.suse.com Thank you