Automated Patch Management
This project modernized an unreliable patching system by migrating to Oracle Linux Automation Manager and implementing modular Ansible playbooks. The solution enhanced automation across diverse Linux environments, improved patch success rates from under 30% to 90% within one month and established a maintainable framework with thorough documentation, driving operational efficiency and reliability.
Problem
Statement
The existing AWX Tower setup for patch management was outdated and unreliable, with a patch success rate below 30%. Key issues included obsolete hostnames and vCenter URLs, compatibility problems migrating from Python 2 to Python 3, hardcoded secrets in playbooks, lack of snapshot safeguards and inadequate handling of patching across diverse environments such as Oracle Enterprise Linux (OEL) and SUSE Linux.
Solution
Proposed
-
Migrated to Oracle Linux Automation Manager and automated patching with modular Ansible playbooks.
-
Improved inventory management and resolved Python compatibility issues using custom credentials and Execution Environments.
-
Implemented vSphere snapshots as rollback safeguards and extended support to OEL and SUSE Linux.
-
Developed scheduled pre-check scripts and cleaned commit history to remove secrets.
Business
Values
01
Automated security patching across 700+ machines, achieving a 90% success rate within the first month well ahead of the 6-month goal.
02
Delivered a robust, maintainable and scalable patching solution with improved operational efficiency and audit readiness.
03
Provided clear documentation to facilitate seamless project handover and knowledge transfer.