?

Cloning ACI Tenants Demo

In this demo, Technical Solutions Architect Joel King illustrates how to quickly satisfy a user request for a development environment with Cisco ACI.

WWT develops automation solutions to maximize the value of automation while minimizing the effort.

We are working on a project called ACI xStart, which demonstrates the capabilities of ACI outside the network infrastructure teams. I created a demo using Ansible to automate deploying a virtual machine from a template, configuring an F5 load balancer and installing and initiating an application in a Docker container.

While we can configure the tenant for this application from Jinja templates of the underlying XML files, it can be time consuming. Why not create a library of common tenant configuration templates and clone the tenant in the same manner a virtual machine is cloned from a template? Once the tenant is cloned, we can automate additions or deletions from the template configuration.

This demonstration also illustrates how the security operations and network operations can collaborate, yet maintain a separation of responsibilities. We show how the workflow can move from the requester to security operations to network operations and use Git for version control of the policy applied to the tenant template. This workflow is illustrated below and demonstrated in the video.

We have simplified the deployment of ACI tenant configurations to satisfy end-user requests, while both collaborating and separating the responsibilities between network and security operations. The Ansible playbook and configuration files are available on GitHub and the video demonstration can be viewed above.