Title: Server task automation and permission control using Ansible and Rundeck

Background

• LINE Pay experienced rapid growth and expansion, resulting in a complex operational environment.
• The need arose to simplify and establish a safer system and work process.
• The LINE Pay SRE team set four goals for effectively orchestrating existing servers and quickly introducing new servers.

Automation tool selection

• Several tools were considered: Terraform, Ansible, and SaltStack.
• Terraform: Suitable for provisioning and orchestration, but not ideal for managing server settings in a secure environment.
• SaltStack: Requires the installation of an agent on target servers and has relatively weak community support.

Solution: Ansible and Rundeck

• Ansible was chosen for its ability to communicate via SSH, not requiring a separate agent.
• Rundeck was selected as a complementary tool to enhance Ansible's functionality.
• Rundeck provides GUI support and allows for the management of permissions.

Advantages of Ansible and Rundeck

• Ansible: Communicates via SSH, widely used, and provides convenience for ad-hoc tasks.
• Rundeck: Provides a GUI, permission management, and user policies.

Conclusion

• The combination of Ansible and Rundeck proved to be an efficient solution for server task automation and permission control in the complex operational environment of LINE Pay.