Security Automation with Ansible 2

Madhu Akula, Akash Mahajan

Security Automation with Ansible 2
  • 出版商: Packt Publishing
  • 出版日期: 2017-12-15
  • 售價: $1,860
  • 貴賓價: 9.5$1,767
  • 語言: 英文
  • 頁數: 364
  • 裝訂: Paperback
  • ISBN: 1788394518
  • ISBN-13: 9781788394512
  • 相關分類: Ansible資訊安全

    • 下單後立即進貨 (約3~4週)

商品描述

Key Features

  • Leverage the agentless, push-based power of Ansible 2 to automate security tasks.
  • Learn to write Playbooks to apply security at any part of your system.
  • A recipe-based guide that will teach you to use Ansible 2 for various use cases like fraud detection, network security, governance and so on.

Book Description

Security automation is one of the most interesting skills to have nowadays. Ansible allows you to write automation procedures once and use them across your entire infrastructure. This book will teach you the best way to use Ansible for completing seemingly complex tasks by using various building blocks available and create solutions that are easy to teach others, store for later, perform version control on and allow for repeatability.

We will start by covering various popular modules and write simple playbooks to showcase those modules. We will see how this can be applied over a variety of platforms and operating systems whether be it Windows/Linux bare metal servers or containers on a cloud platform. Once the bare bones automation is in place, we will learn how to leverage tools like Ansible Tower or even Jenkins to create scheduled repeatable processes around security patching, security hardening, compliance reports, monitoring of systems and so on. You will then delve into useful security automation techniques and approaches and learn to extend Ansible for enhanced security. While on the way, we will engage topics like how to manage secrets, how to manage all the playbooks that we will create and how to enable collaboration around them. The final stretch will see us tackling on how we can extend the modules of Ansible for our use and do all the above in a programmatic manner for even more powerful automation frameworks and rigs.

What you will learn

  • Use Ansible playbooks, roles, modules and templating to build generic, testable playbooks
  • Manage Linux and Windows hosts remotely in a repeatable and predictable manner
  • Learn how to do security patch management, security hardening with scheduling and automation
  • Setup AWS Lambda for server-less automated defense
  • Run continuous security scans against your hosts and automatically fix and harden the gaps
  • Extend Ansible to write your custom modules and use it as part of your already existing security automation programs
  • Perform automation security audit checks for Applications using Ansible
  • Manage secrets in Ansible using Ansible vault

商品描述(中文翻譯)

主要特點


  • 利用 Ansible 2 的無代理、推送式功能自動化安全任務。

  • 學習編寫 Playbooks,在系統的任何部分應用安全措施。

  • 一本基於配方的指南,教你如何使用 Ansible 2 處理各種用例,如詐騙檢測、網絡安全、治理等。

書籍描述

安全自動化是當今最有趣的技能之一。Ansible 允許你編寫自動化程序一次,然後在整個基礎架構中使用它們。本書將教你如何使用 Ansible 以最佳方式完成看似複雜的任務,使用各種可用的構建塊創建易於教授、存儲、進行版本控制並可重複使用的解決方案。

我們將首先介紹各種熱門模塊,並編寫簡單的 Playbooks 來展示這些模塊。我們將看到如何應用於各種平台和操作系統,無論是 Windows/Linux 裸機服務器還是雲平台上的容器。一旦基本的自動化就位,我們將學習如何利用工具如 Ansible Tower 或 Jenkins 創建定期可重複的安全補丁、安全加固、合規報告、系統監控等流程。然後,您將深入研究有用的安全自動化技術和方法,並學習擴展 Ansible 以實現增強的安全性。在此過程中,我們將涉及如何管理密鑰、如何管理我們創建的所有 Playbooks 以及如何實現協作。最後,我們將探討如何擴展 Ansible 的模塊以滿足我們的需求,並以程序化方式進行所有上述操作,以實現更強大的自動化框架和配置。

你將學到什麼


  • 使用 Ansible Playbooks、角色、模塊和模板構建通用、可測試的 Playbooks

  • 以可重複和可預測的方式遠程管理 Linux 和 Windows 主機

  • 學習如何進行安全補丁管理、安全加固並進行計劃和自動化

  • 設置 AWS Lambda 進行無服務器自動化防禦

  • 對主機運行持續安全掃描,自動修復和加固漏洞

  • 擴展 Ansible 以編寫自定義模塊,並將其作為已有安全自動化程序的一部分使用

  • 使用 Ansible 對應用程序執行自動化安全審計檢查

  • 使用 Ansible 密碼保險庫管理密鑰

類似商品