RE: DevOps Megathread: what you need and how we can help!

Hello there, we released a new Pulumi Xen Orchestra provider last month ! It's worth noting that the work on this was started by some contributors from DESY, and that now we (Vates) commit to support and maintain it. This demonstrate the strength of joined work from both community and Vates on free and open source softwares

So what is offered is to declare your infrastructure as code, in Javascript or Typescript, Go, or Python (pick the one you prefer ) and to deploy, maintain, and update it.

https://github.com/vatesfr/pulumi-xenorchestra/

xo-powershell moves from alpha to beta

The XO-PowerShell module is published in the :microsoft: PowerShell Gallery as v1.0.0-beta

https://www.powershellgallery.com/packages/xo-powershell/1.0.0-beta

Grab it with one powershell command:

Install-Module -Name xo-powershell -AllowPrerelease

Doc here

Thanks to @dinhngtu @iButcat

@HamiltonWDS Thanks for the report. As it works with wget let use it! I'll switch from curl to wget in doc. In the meantime some colleagues will investigate more.

@coolsport00 Some forum users posted about this I think, like here

@coolsport00 Hello, I think you can find some relevant infos about GPU support, here in the forum, and also in the doc https://docs.xcp-ng.org/compute/#-gpu-passthrough

@coolsport00 Hello, I don't know the VMware feature you're talking about.

I would use Packer https://github.com/vatesfr/packer-plugin-xenserver and Cloud Base init https://cloudbase-init.readthedocs.io/en/latest/intro.html to build a Windows VM template. The sysprep would be run at the end of the packer for example using the provisioner powershell or in the shutdown_command

NB: do not forget to deploy guest tools inside the template.

@dinhngtu might have also suggestions

Hello, the Hub is offered as is. We'll update the available templates soon. In the meantime you can convert any VM to be a template.
More here :

• https://docs.xen-orchestra.com/vm-templates

@dsmteam Yes I totally agree, a user who logs out from XO, might also have the choice to logout from all SSO'ed applications. That would be for the feature request list

Hi again, I tried to reproduce the issue, but obviously as I do not have the same LDAP server and content as yours it is not easy. So I setup the plugin as follow:

User filter: (|(objectclass=posixAccount))
ID Attribute: uid

Group filter: (objectclass=posixGroup)
ID Attribute: gidNumber
Display name attribute: cn

Group attribute: memberUid
User attribute: uid

With this I can see :

• All the groups synced from LDAP to XO
• Users inside the groups (from the groups page)
• Users belong to un number of groups (from the users page)

I also tuned the config as follow:

User filter: (&(objectclass=posixAccount)(uid={{name}})
ID Attribute: uid

Group filter: (&(objectclass=posixGroup)(cn=group1))
ID Attribute: gidNumber
Display name attribute: cn

Group attribute: memberUid
User attribute: uid

• Only the group1 is synced
• User and group matching works as expected.

Then is the two cases, I could create ACL that grant admin priviliges on one or more objects to a group and so its users.

Can you trigger a group sync and look for error in logs?

Hello @McHenry I wanted to share with you that we've just build a new images for XOA and the proxy. You might want to try it and keep us posted.

Hello, a community member also built a PowerShell module, using the (good old) jsonRPC https://github.com/rcfmartin/PSXO

let me ask a colleague about the task GUID-taskID mapping.

Hello @IvanK !

Maybe you did not saw this in news, but we released a PowerShell module https://github.com/vatesfr/xo-powershell

You can install it with Install-Module -Name xo-powershell -AllowPrerelease and connect Connect-XoSession -HostName "https://your-xo-server" -Token "your-api-token" easily.

Tell me what do you think of it.

xo-powershell moves from alpha to beta

The XO-PowerShell module is published in the :microsoft: PowerShell Gallery as v1.0.0-beta

https://www.powershellgallery.com/packages/xo-powershell/1.0.0-beta

Grab it with one powershell command:

Install-Module -Name xo-powershell -AllowPrerelease

Doc here

Thanks to @dinhngtu @iButcat

@coolsport00 Some forum users posted about this I think, like here

@coolsport00 Hello, I think you can find some relevant infos about GPU support, here in the forum, and also in the doc https://docs.xcp-ng.org/compute/#-gpu-passthrough

@coolsport00 Hello, I don't know the VMware feature you're talking about.

I would use Packer https://github.com/vatesfr/packer-plugin-xenserver and Cloud Base init https://cloudbase-init.readthedocs.io/en/latest/intro.html to build a Windows VM template. The sysprep would be run at the end of the packer for example using the provisioner powershell or in the shutdown_command

NB: do not forget to deploy guest tools inside the template.

@dinhngtu might have also suggestions

Hello @tmnguyen

About the XOSTOR limit, I read the devs saying it is like this as of now.
About using Linstor created by and for XOSTOR with another apps, in your case a Talos Kubernetes cluster, I think it should work, but all the volumes not created by XOSTOR would be unmanaged neither by XOSTOR nor by XO. So imagine, one admin would check in XO that a XOSTOR SR is not used anymore in the XO web ui, and would remove it. But would not think that it was also used for PV/PVC Kubernetes. There is this kind of risk. And as of now we do not support this.

By the way, we are going to start this month to write a CSI driver for Kubernetes for Xen Orchestra. This means from within a Kubernetes cluster you will create PVs/PVCs that would be backed by VM disks, aka VDIs

Subscribe to this topic if you want to be notified for the updates on this https://xcp-ng.org/forum/topic/10301/devops-megathread-what-you-need-and-how-we-can-help

Hello, I suggest you look also for Packer to build ready to use VM templates, with cloud-init, guest tools, and the softwares you'd need. There's a blog post for this https://xcp-ng.org/blog/2024/02/22/using-packer-with-xcp-ng/.

@Tristis-Oris
Hello, thanks for the report. I will try to fix and improve things, but before I have a few questions.

• What is the template you are using? Is it one from XOA Hub?
• Where did you found the cloud-init config snippets?

For your information, the defaults cloud-init configs snippets come from here: https://github.com/vatesfr/xen-orchestra/blob/master/packages/xo-web/src/common/cloud-config.js#L78-L88

For growpart it depends of the template used. Last time I tested it was working with a Debian 12 template from the XOA Hub.

@markxc said in create a new vm using a iso setting cpu ram network via api:

Out of curiosity: how do you handle the Xen Orchestra appliance installation?

We use Packer, a Debian iso and an Ansible playbook in the ansible provisioner. See https://developer.hashicorp.com/packer/integrations/hashicorp/ansible/latest/components/provisioner/ansible

With this setup, we achieve these tasks:

• Create VM, mount ISO, perform install, and detect when installation is complete
• Shut down the VM
• Export VM as an OVA template

We also have a CI/CD pipeline doing this automatically.