The NetApp cookbook manages Clustered Data ONTAP clusters using the NetApp Manageability SDK. Both cluster-wide and Storage Virtual Machine (SVM, formerly known as Vservers) specific operations are supported.
The NetApp cookbook may also be used to manage the netapp_role
, netapp_volume
, and netapp_qtree
resources on Cloud ONTAP on Amazon Web Services.
You may download it from NetApp after you have created an account on NetApp NOW
-
Save the NetApp SDK to this NetApp cookbook in the "libraries" dir.
-
Update the NaServer.rb to specify the path of NaElement. Replace the line:
require NaElement
With -require File.dirname(__FILE__) + "/NaElement"
The ZAPI connection is made over HTTP or HTTPS, with a user account that exists on the NetApp storage cluster. If you specify an account that only has SVM administration privileges (rather than cluster administration privileges), some features of the NetApp cookbook will not work. The connection settings are managed by attributes in the cookbook but are also exposed in Common attributes for the NetApp resources.
['netapp']['url'] = 'https://root:secret@pfiler01.example.com/svm01'
or
['netapp']['https'] boolean, default is 'true'.
['netapp']['user'] string
['netapp']['password'] string
['netapp']['fqdn'] string
['netapp']['vserver'] string
['netapp']['asup'] boolean, default is 'true'.
The ASUP option, if set to 'true', will cause a log message to be sent to the storage cluster. This log message will be included in ASUP bundles that are sent back to NetApp, if configured to do so on the system. If ASUP is not enabled on the system or on the attribute listed above, no log message will be sent to NetApp.
In addition to those provided by Chef itself (ignore_failure
, retries
, retry_delay
, etc.), the connection attribute(s) are exposed all NetApp Resources even though they are typically set by attributes.
The :nothing
action is provided by Chef for all Resources for use with notifications and subscriptions.
Cluster management of user creation, modification and deletion.
This resource has the following actions:
:create
Default.:delete
Removes the user
This resource has the following attributes:
name
User name. Requiredpassword
Required for non-snmp usersapplication
Name of the application. Possible values: 'console', 'http', 'ontapi', 'rsh', 'snmp', 'sp', 'ssh', 'telnet'comment
role
Array of rolessnmpv3-login-info
SNMPv3 user login information for 'usm' authentication methodvserver
Name of vserverauthentication
Authentication method for the application. Possible values: 'community', 'password', 'publickey', 'domain', 'nsswitch' and 'usm'
netapp_user "clogeny" do
vserver "my-vserver"
role "admin"
application "ontapi"
authentication "password"
password "my-password1"
action :create
end
netapp_user "clogeny" do
vserver "my-vserver"
application "ontapi"
authentication "password"
action :delete
end
Cluster management of group creation, modification and deletion.
This resource has the following actions:
:create
Default.:delete
Removes the group
This resource has the following attributes:
name
string, name attribute. Requiredcomment
string.roles
Array of roles for this group.
netapp_group 'admins' do
comments 'keep the trains on time'
roles ['security']
action :create
end
netapp_group 'read-only' do
action :delete
end
Cluster management of role creation, modification and deletion.
The netapp_role
resource may be used to manage roles on Cloud ONTAP instances as well.
This resource has the following actions:
:create
Default.:delete
Removes the role
This resource has the following attributes:
name
Name attribute. Requiredsvm
Name of vserver. Requiredcommand_directory
The command or command directory to which the role has an access. Requiredaccess_level
Access level for the role. Possible values: 'none', 'readonly', 'all'. The default value is 'all'.return_record
If set to true, returns the security login role on successful creation. Default: falserole_query
Example: The command is 'volume show' and the query is '-volume vol1'
netapp_role 'security' do
svm 'my-vserver'
command_directory 'volume'
action :create
end
netapp_role 'superusers' do
svm 'my-vserver'
command_directory 'DEFAULT'
action :delete
end
Cluster management of NetApp features by license. See API docs for "license-v2".
This resource has the following action:
:enable
Default. Ensures the NetApp provides this feature.
This resource has the following attributes:
codes
Array, license code when adding a package. 24 or 48 uppercase alpha only characters.
netapp_feature 'iscsi' do
codes ['ABCDEFGHIJKLMNOPQRSTUVWX']
action :enable
end
Cluster-level management of a data Storage Virtual Machines (SVMs). SVM-level management is done through other resources. After the cluster setup, a cluster administrator must create data SVMs and add volumes to these SVMs to facilitate data access from the cluster. A cluster must have at least one data SVM to serve data to its clients.
This resource has the following actions:
:create
Default.:delete
Removes the svm
This resource has the following attributes:
name
name attribute. Required. SVM names can contain a period (.), a hyphen (-), or an underscore ( _ ), but must not start with a hyphen, period, or number. The maximum number of characters allowed in SVM names is 47.nsswitch
Required.volume
Requiredaggregate
Required. Aggregate on which you want to create the root volume for the SVM. The default aggregate name is used if you do not specify one.security
Required. Determines the type of permissions that can be used to control data access to a volume. Default isunix
.comment
is_repository_vserver
language
If you do not specify the language, the default languageC.UTF-8
orPOSIX.UTF-8
is used.???nmswitch
quota_policy
return_record
snapshot_policy
netapp_svm "example-svm" do
security "unix"
aggregate "aggr1"
volume "vol1"
nsswitch ["nis"]
action :create
end
SVM-management of volume creation, modification and deletion including auto-increment, snapshot schedules and volume options.
The netapp_volume
resource provisions additional volumes on Cloud ONTAP instances. It Creates the volume on an existing aggregate that has sufficient free space.
This resource has the following actions:
:create
Default.:delete
Removes the volume
This resource has the following attributes:
name
string, name attribute. Volume name. Required.svm
string. Name of managed SVM. Requiredaggregate
string. Requiredsize
string (1-9kmgt). Required
netapp_volume '/foo' do
svm 'vs1.example.com'
aggregate 'aggr1'
size '5t'
action :create
end
netapp_volume 'bar' do
action :delete
end
SVM-management of logical interface (LIF) creation, modification and deletion.
This resource has the following actions:
:create
Default. Ensures the lif is in this state.:delete
Removes the lif
This resource has the following attributes:
name
name attribute. LIF name. Requiredsvm
Name of managed SVM. Requiredaddress
administrative_status
valid values "up", "down", "unknown"comment
data_protocols
dns_domain_name
failover_group
failover_policy
valid values "nextavail", "priority", "disabled"firewall_policy
home_node
home_port
is_auto_revert
is_ipv4_link_local
listen_for_dns_query
netmask
netmask_length
return_record
role
valid values "undef", "cluster", "data", "node_mgmt", "intercluster", "cluster_mgmt"routing_group_name
use_failover_group
valid values "system_defined", "disabled", "enabled"
netapp_lif 'private' do
svm 'vs1.example.com'
action :create
end
netapp_lif 'public' do
action :delete
end
SVM-management of iSCSI target creation, modification and deletion.
This resource has the following actions:
:create
Default. Creates iSCSI service.:delete
Removes the target
This resource has the following attributes:
svm
Name of managed SVM. Requiredalias
node
start
True or False. True by default.
netapp_iscsi 'foo' do
svm 'vs1.example.com'
action :create
end
netapp_iscsi 'bar' do
action :delete
end
SVM-management of NFS export rule creation, modification and deletion including NFS export security. Rule changes are persistent.
You do not need to enter any information to configure NFS on the SVM. The NFS configuration is created when you specify the protocol value as nfs
.
This resource has the following actions:
:create
Default. Ensures the NFS export is in this state.:delete
Removes the NFS export
This resource has the following attributes:
pathname
string, name attribute. Requiredsvm
string. Name of managed SVM. Requiredsecurity_rules
hash. Access block information for lists of hosts.
netapp_nfs '/vol/vol0' do
svm 'vs1.example.com'
action :create
end
netapp_export '/vol/vol1' do
svm 'vs1.example.com'
action :delete
end
SVM-management of qtree creation, modification and deletion. Qtrees are a special subdirectory of the root of a volume that acts as a virtual subvolume with special attributes.
The netapp_qtree
resource may be used to create logically defined file system on Cloud ONTAP instances.
This resource has the following actions:
:create
Default. Ensures the QTree is in this state.:delete
Removes the QTree
This resource has the following attributes:
name
name attribute. The path of the qtree, relative to the volume. Requiredsvm
Name of managed SVM. Requiredvolume
Name of the volume on which to create the qtree. Required.export_policy
Export policy of the qtree. If this input is not specified, the qtree will inherit the export policy of the parent volume.mode
The file permission bits of the qtree, similar to UNIX permission bits. If this argument is missing, the permissions of the volume is used.oplocks
Opportunistic locks mode of the qtree. Possible values: "enabled", "disabled". Default value is the oplock mode of the volume.security
Security style of the qtree. Possible values: "unix", "ntfs", or "mixed". Default value is the security style of the volume.force
True or false
netapp_qtree '/share' do
svm 'vs1.example.com'
volume '/foo'
action :create
end
netapp_role '/bar' do
svm 'vs1.example.com'
volume '/foo'
action :delete
end
SVM-management of igroup creation. Creating the igroup and the initiator is a pre-requisite for the lun.
This resource has the following actions:
:create
Default.:add_rule
add rule to the igroup
This resource has the following attributes:
name
string, name attribute. Volume name. Required.svm
string. Name of managed SVM. Requiredostype
string. Required "linux", "windows"igroup_type
string "iscsi". Requiredinitiator
string. Required. Example: "iqn.1998-01.com.vmware:t1esx152-132-431b8380"
#Igroup create
netapp_igroup node['igroup']['name'] do
svm node['netapp']['vserver']
igroup_type node['igroup']['igroup_type']
ostype node['igroup']['ostype']
action :create
end
#Igroup add initiator
netapp_igroup node['igroup']['name'] do
svm node['netapp']['vserver']
initiator node['igroup']['initiator']
action :add_rule
end
SVM-management of lun creation. Creating the igroup, and volume are pre-requisites necesarry for creation.
This resource has the following actions:
:create
Default.:map
map the lun created if the igroup is created
This resource has the following attributes:
name
string, name attribute. Volume name. Required.svm
string. Name of managed SVM. Requiredsize
string. Required "50g"path
string Path of the SVM volume and lun. Requiredigroup
string. Required.id
string the id where the lun is created. Required.
lpath = "/vol/"+vol[:name]+"/"+lun[:name]
netapp_lun lpath do
svm node['netapp']['vserver']
igroup "iscsi_#{node['hostname']}_#{node['ipaddress']}"
id lun['id'].to_s
action :nothing
end
netapp_lun lun do
svm node['netapp']['vserver']
path lpath
size ((lun['lsize']*1024**3).to_i).to_s
ostype vol['ostype']
comment node['volume']['comment']
allocation node['lun']['allocation']
reservation node['lun']['reservation']
action :create
notifies :map, "netapp_lun[#{lpath}]", :immediately
end
- Fork the repository on Github
- Create a named feature branch (like
add_component_x
) - Write your change
- Write tests for your change (if applicable)
- Run the tests, ensuring they all pass
- Submit a Pull Request using Github
- Authors:: Arjun Hariharan (Arjun.Hariharan@Clogeny.com)
Copyright 2014 Chef Software, Inc.
Licensed under the Apache License, Version 2.0 (the "License");
you may not use this file except in compliance with the License.
You may obtain a copy of the License at
http://www.apache.org/licenses/LICENSE-2.0
Unless required by applicable law or agreed to in writing, software
distributed under the License is distributed on an "AS IS" BASIS,
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
See the License for the specific language governing permissions and
limitations under the License.