Ansible Agent Option?
- 
 @Obsolesce said in Ansible Agent Option?: @coliver said in Ansible Agent Option?: @Obsolesce said in Ansible Agent Option?: Why not have an Ansible server on the same network as the devices and reachable by the Ansible server? From an MSP perspective that can get pretty inefficient and heavy. Why is an MSP wanting to manage client user Windows mobile devices with Ansible? That doesn't make much sense and not really what it's for. What is Ansible for if not managing your computers? It's what Salt is for. 
- 
 @Obsolesce said in Ansible Agent Option?: @coliver said in Ansible Agent Option?: @Obsolesce said in Ansible Agent Option?: Why not have an Ansible server on the same network as the devices and reachable by the Ansible server? From an MSP perspective that can get pretty inefficient and heavy. Why is an MSP wanting to manage client user Windows mobile devices with Ansible? That doesn't make much sense and not really what it's for. Even not an MSP, why would anyone want to use anything but state machines for managing their machines? 
- 
 @Obsolesce said in Ansible Agent Option?: @scottalanmiller said in Ansible Agent Option?: @Obsolesce said in Ansible Agent Option?: Why not have an Ansible server on the same network as the devices and reachable by the Ansible server? So a full server traveling with every laptop? I get that it could be a VM on top of every Windows's instance, but that seems absurdly complex. And how to you make sure it fires up? And how do you manage hundreds or thousands of "one to one" servers to devices? And if you need a server for each device, does any of it make sense? Oh, lol... so mobile devices. I missed that bit. Not mobile, desktops, laptops, servers... all computing devices. We want (and have with Salt), a single, uniform, enterprise, state based means of management. These aren't special cases, they are just "normal computing devices". It would be awful to have to use one tool for the "LAN", and one for the modern "LAN-less" components of a company. 
- 
 @scottalanmiller said in Ansible Agent Option?: @Obsolesce said in Ansible Agent Option?: @coliver said in Ansible Agent Option?: @Obsolesce said in Ansible Agent Option?: Why not have an Ansible server on the same network as the devices and reachable by the Ansible server? From an MSP perspective that can get pretty inefficient and heavy. Why is an MSP wanting to manage client user Windows mobile devices with Ansible? That doesn't make much sense and not really what it's for. What is Ansible for if not managing your computers? It's what Salt is for. MDM != configuration management 
- 
 @Obsolesce said in Ansible Agent Option?: @scottalanmiller said in Ansible Agent Option?: @Obsolesce said in Ansible Agent Option?: @coliver said in Ansible Agent Option?: @Obsolesce said in Ansible Agent Option?: Why not have an Ansible server on the same network as the devices and reachable by the Ansible server? From an MSP perspective that can get pretty inefficient and heavy. Why is an MSP wanting to manage client user Windows mobile devices with Ansible? That doesn't make much sense and not really what it's for. What is Ansible for if not managing your computers? It's what Salt is for. MDM != configuration management I want what Salt does... complete system management via State. There is a reason that state management is considered the future of system management. Why do I want MDM if it doesn't do what we are looking for? 
- 
 A simple test would be this.... if MDM is the right tool for your laptops, then it would also be the right tool for your servers. But I've seen no one think that that would make sense. Treating servers, desktops, and laptops, and their network locations, as difference conceptual animals is a fragility and complexity that shouldn't exist. They are all one thing, system management. Some more complex, some simpler, but the basics are identical. 
- 
 @scottalanmiller said in Ansible Agent Option?: We want (and have with Salt), a single, uniform, enterprise, state based means of management. Salt works, but it's not MDM. @scottalanmiller said in Ansible Agent Option?: @Obsolesce said in Ansible Agent Option?: @scottalanmiller said in Ansible Agent Option?: @Obsolesce said in Ansible Agent Option?: @coliver said in Ansible Agent Option?: @Obsolesce said in Ansible Agent Option?: Why not have an Ansible server on the same network as the devices and reachable by the Ansible server? From an MSP perspective that can get pretty inefficient and heavy. Why is an MSP wanting to manage client user Windows mobile devices with Ansible? That doesn't make much sense and not really what it's for. What is Ansible for if not managing your computers? It's what Salt is for. MDM != configuration management I want what Salt does... complete system management via State. There is a reason that state management is considered the future of system management. Why do I want MDM if it doesn't do what we are looking for? Maybe I don't know what you are looking for. I think you want to manage devices, that can be mobile, with a configuration management tool, instead of a device management tool. 
- 
 @scottalanmiller said in Ansible Agent Option?: A simple test would be this.... if MDM is the right tool for your laptops, then it would also be the right tool for your servers. Servers are not mobile devices. 
- 
 @Obsolesce said in Ansible Agent Option?: @scottalanmiller said in Ansible Agent Option?: A simple test would be this.... if MDM is the right tool for your laptops, then it would also be the right tool for your servers. Servers are not mobile devices. Nor are Desktops but it would be nice to manage them with the same tool. Intune comes to mind it will do some state management and is getting better with time... 
- 
 @Obsolesce said in Ansible Agent Option?: @scottalanmiller said in Ansible Agent Option?: A simple test would be this.... if MDM is the right tool for your laptops, then it would also be the right tool for your servers. Servers are not mobile devices. Nor are desktops. They are all the same. Everything is somewhat mobile, nothing is totally stationary or totally mobile. They are just "computing devices". Needing to define their rate of mobility as a part of their ability to be managed would be a failure of any solution. 
- 
 @coliver said in Ansible Agent Option?: @Obsolesce said in Ansible Agent Option?: @scottalanmiller said in Ansible Agent Option?: A simple test would be this.... if MDM is the right tool for your laptops, then it would also be the right tool for your servers. Servers are not mobile devices. Nor are Desktops but it would be nice to manage them with the same tool. Intune comes to mind it will do some state management and is getting better with time... Intune only works because it's built to work that way. The operating systems and software that runs on them is built to work with intune so that the devices can be managed. Intune is (M)DM. Jamf is (M)DM. SaltStack, Ansible, etc is not device management. SaltStack has a big plus that it works well to manage devices due to the nature of agent based. 
- 
 @scottalanmiller said in Ansible Agent Option?: @Obsolesce said in Ansible Agent Option?: @scottalanmiller said in Ansible Agent Option?: A simple test would be this.... if MDM is the right tool for your laptops, then it would also be the right tool for your servers. Servers are not mobile devices. Nor are desktops. They are all the same. Everything is somewhat mobile, nothing is totally stationary or totally mobile. They are just "computing devices". Needing to define their rate of mobility as a part of their ability to be managed would be a failure of any solution. That's not the whole point. It's Device management versus configuration / state management. 
- 
 @Obsolesce said in Ansible Agent Option?: @scottalanmiller said in Ansible Agent Option?: We want (and have with Salt), a single, uniform, enterprise, state based means of management. Salt works, but it's not MDM. @scottalanmiller said in Ansible Agent Option?: @Obsolesce said in Ansible Agent Option?: @scottalanmiller said in Ansible Agent Option?: @Obsolesce said in Ansible Agent Option?: @coliver said in Ansible Agent Option?: @Obsolesce said in Ansible Agent Option?: Why not have an Ansible server on the same network as the devices and reachable by the Ansible server? From an MSP perspective that can get pretty inefficient and heavy. Why is an MSP wanting to manage client user Windows mobile devices with Ansible? That doesn't make much sense and not really what it's for. What is Ansible for if not managing your computers? It's what Salt is for. MDM != configuration management I want what Salt does... complete system management via State. There is a reason that state management is considered the future of system management. Why do I want MDM if it doesn't do what we are looking for? Maybe I don't know what you are looking for. I think you want to manage devices, that can be mobile, with a configuration management tool, instead of a device management tool. A single, uniform, state based, total system management platform. I want exactly the same things on servers, desktops, laptops, etc. Not one thing different between them as I need the same functionality universally, and using multiple tools to do the same task would be poor, at best. 
- 
 @Obsolesce Just take MDM and SM out of the equation. He wants FM Fleet Management for everything a client has. 
- 
 @Obsolesce said in Ansible Agent Option?: @scottalanmiller said in Ansible Agent Option?: @Obsolesce said in Ansible Agent Option?: @scottalanmiller said in Ansible Agent Option?: A simple test would be this.... if MDM is the right tool for your laptops, then it would also be the right tool for your servers. Servers are not mobile devices. Nor are desktops. They are all the same. Everything is somewhat mobile, nothing is totally stationary or totally mobile. They are just "computing devices". Needing to define their rate of mobility as a part of their ability to be managed would be a failure of any solution. That's not the whole point. It's Device management versus configuration / state management. Nope, the management is absolutely identical in every way. Not one iota different. Configuration / state management for all. No idea what this "device management" is except for a half-assed attempt at config / state management without really doing it. 
- 
 @scottalanmiller said in Ansible Agent Option?: @Obsolesce said in Ansible Agent Option?: @scottalanmiller said in Ansible Agent Option?: We want (and have with Salt), a single, uniform, enterprise, state based means of management. Salt works, but it's not MDM. @scottalanmiller said in Ansible Agent Option?: @Obsolesce said in Ansible Agent Option?: @scottalanmiller said in Ansible Agent Option?: @Obsolesce said in Ansible Agent Option?: @coliver said in Ansible Agent Option?: @Obsolesce said in Ansible Agent Option?: Why not have an Ansible server on the same network as the devices and reachable by the Ansible server? From an MSP perspective that can get pretty inefficient and heavy. Why is an MSP wanting to manage client user Windows mobile devices with Ansible? That doesn't make much sense and not really what it's for. What is Ansible for if not managing your computers? It's what Salt is for. MDM != configuration management I want what Salt does... complete system management via State. There is a reason that state management is considered the future of system management. Why do I want MDM if it doesn't do what we are looking for? Maybe I don't know what you are looking for. I think you want to manage devices, that can be mobile, with a configuration management tool, instead of a device management tool. A single, uniform, state based, total system management platform. I want exactly the same things on servers, desktops, laptops, etc. Not one thing different between them as I need the same functionality universally, and using multiple tools to do the same task would be poor, at best. Then what you do is put software on each device you want to manage, or find a tool that can magically find devices behind any random unknown NAT. 
- 
 @Obsolesce said in Ansible Agent Option?: @coliver said in Ansible Agent Option?: @Obsolesce said in Ansible Agent Option?: @scottalanmiller said in Ansible Agent Option?: A simple test would be this.... if MDM is the right tool for your laptops, then it would also be the right tool for your servers. Servers are not mobile devices. Nor are Desktops but it would be nice to manage them with the same tool. Intune comes to mind it will do some state management and is getting better with time... Intune only works because it's built to work that way. The operating systems and software that runs on them is built to work with intune so that the devices can be managed. Intune is (M)DM. Jamf is (M)DM. SaltStack, Ansible, etc is not device management. SaltStack has a big plus that it works well to manage devices due to the nature of agent based. SaltStack and Ansible are basically the same. But Ansible lacks an agent so access is less secure and way more complicated. You can layer SDN onto Ansible to achieve it, ZeroTier for example, but that carries complexity and problems. The agent nature is so superior, by such a staggering degree. In theory you can build an Ansible agent, that shouldn't be that hard. The problem is that no one seems to have made and maintained one, it's just a theory that you could do, but beyond that, if someone made an agent it seems like it would be perfect. 
- 
 @Obsolesce said in Ansible Agent Option?: @scottalanmiller said in Ansible Agent Option?: @Obsolesce said in Ansible Agent Option?: @scottalanmiller said in Ansible Agent Option?: We want (and have with Salt), a single, uniform, enterprise, state based means of management. Salt works, but it's not MDM. @scottalanmiller said in Ansible Agent Option?: @Obsolesce said in Ansible Agent Option?: @scottalanmiller said in Ansible Agent Option?: @Obsolesce said in Ansible Agent Option?: @coliver said in Ansible Agent Option?: @Obsolesce said in Ansible Agent Option?: Why not have an Ansible server on the same network as the devices and reachable by the Ansible server? From an MSP perspective that can get pretty inefficient and heavy. Why is an MSP wanting to manage client user Windows mobile devices with Ansible? That doesn't make much sense and not really what it's for. What is Ansible for if not managing your computers? It's what Salt is for. MDM != configuration management I want what Salt does... complete system management via State. There is a reason that state management is considered the future of system management. Why do I want MDM if it doesn't do what we are looking for? Maybe I don't know what you are looking for. I think you want to manage devices, that can be mobile, with a configuration management tool, instead of a device management tool. A single, uniform, state based, total system management platform. I want exactly the same things on servers, desktops, laptops, etc. Not one thing different between them as I need the same functionality universally, and using multiple tools to do the same task would be poor, at best. Then what you do is put software on each device you want to manage, or find a tool that can magically find devices behind any random unknown NAT. Right, that's what I asked if anyone had one for Ansible. That's why I asked for exactly that. 
- 
 @scottalanmiller said in Ansible Agent Option?: Nope, the management is absolutely identical in every way. Not one iota different. IF that was the case, then Ansible would just work like a real MDM or DM solution would. LIke Intune, Jamf, SCCM, mobileiron, even ESET, etc... anything with an agent basically. Ansible is not for managing mobile devices. A device i can consider mobile if it's not on the same LAN as the management server. 
- 
 @Obsolesce said in Ansible Agent Option?: @scottalanmiller said in Ansible Agent Option?: Nope, the management is absolutely identical in every way. Not one iota different. IF that was the case, then Ansible would just work like a real MDM or DM solution would. LIke Intune, Jamf, SCCM, mobileiron, even ESET, etc... anything with an agent basically. Ansible is not for managing mobile devices. A device i can consider mobile if it's not on the same LAN as the management server. You are defining big concepts, like MDM and state management machines, by their use of an agent or not. That's not the same thing. The state machine world has both agent based, and agentless, and both options within it. Using the limitations of a LAN as a way to define kinds of software is a very odd approach to taxonomy. 





