Terraform Enterprise vs Maestro Terraform as a Service - Part I.


Maestro team has been constantly monitoring and carefully analyzing offerings and tendencies of the market. Currently, we have noticed, that Terraform Enterprise became the top and promising solution, being in great demand among virtual infrastructure users.

During Maestro earlier and present presales activities, we quite often get questions about how Maestro works with Terraform Enterprise, or whether we have a substitute or replacement of it in our application.

What benefits does Maestro have compared to Terraform Enterprise?

  • VCS Connection
TFE: VCS connection in Terraform Enterprise allows users to write, version, review, collaborate on code. Automate and trigger runs through the connection between Terraform and major VCS providers.
M: Maestro is integrated with GitHub and allows users to work with it as a source for taking Terraform templates. Maestro works not only with a single file but with large amounts of files located in different folders. Folders can contain different modules allowing them to deploy the whole infrastructure in a case when those templates are correctly configured and installed. If required, Maestro can be integrated with any other system of the customer company’s choice.
  • Private Module Registry
TFE: Shares code across the organization. Manages module lifecycle using versions that can be enforced by Sentinel and enable self-service.
M: Maestro allows users to work with modules. By the term “module”, in comparison to the common programming language, we mean functions or methods which can be reused. The module in Terraform is a created template or several files where the configuration to be reused is described. Currently, Terraform Enterprise offers its storage for storing such modules, and GitHub can be used for the same purposes as well. Deploying the Terraform template in the Maestro system means also that we can pull the whole repository where modules can be described, thus we will be able to reuse the code and work with modules automatically.
TFE also supports Sentinel. Sentinel is a proprietary policy engine that allows applying policies at the time a user launches the Terraform template. Maestro also has its Policy Engine, which is executed when launching a Terraform template, or when users perform any other actions. The Maestro Policy Engine also allows to control costs with quotas mechanism and allowing the execution of templates via approval flow.
Maestro also supports self-service, i.e. Terraform templates uploaded to Maestro system by users who created them can be used by other Maestro users via the Catalog and the Stacks pages, where all templates existing in the system are displayed.
  • Workspaces
TFE: Decomposes monolithic infrastructure into logical micro infrastructures. Maps functional responsibilities to individual workspaces and interlink workspace outputs via APIs.
M: In Maestro Workspaces allow decomposing the monolithic infrastructure into some logical parts or microservices, applying the “divide and conquer” algorithm.
Indeed, it is preferable to divide large infrastructures into smaller components. For example, a regular internet shop structure contains at least a database, one or several servers working on certain business logic and a load balancer, accepting requests from users, and distributing requests to specific servers.

Such an infrastructure can be divided into 3 separate independent parts:
  • database, as it does not depend on the rest of the application. If, for example, we update the server or change the settings of the load balancer, the database should not be involved or affected, as far as we can lose data. That database must always be managed separately.
  • servers, which are set by applying a separate Terraform template that describes the server configuration. For example, several instances are deployed, a certain set of software is installed on these instances, as well as the means of configuring the instances – all these actions are performed based on the description in one Terraform template.
  • load balancer, a separate component for which it is required to point out a list of instances among which the load must be distributed.
Each of the three components requires to be described in a separate Terraform template.
Maestro supports Workspaces, storing Workspaces as a new template in Maestro Catalog.

As for Interlink workspaces outputMaestro can work with the same repository. If this is all interconnected and the Terraform template is written using different modules, it is possible to use the outputs from these modules automatically by default.
The option to divide it into different Terraform templates and interlink their outputs to each other currently is not supported.

Proceed with reading the article here: Part II, Part III
;)

Comments

Post a Comment

Popular posts from this blog

Maestro Analytics: Essentials at the Fingertips

Image
Infrastructure analytics is one of the cornerstones for effective cloud management. Each cloud provider offers its own set of features and services for such purpose. We can say that AWS QuickSight, Google Data Studio, and Microsoft BI are among the top of the native analytics and BI offerings. They are deeply integrated into their native infrastructures, provide the detailed review of the infrastructure state, events and cost, and allow to take a deep dive into details, being powered by strong internal mechanisms and AI/ML engines. However, in many cases they provide a huge volume of data which needs a BI expert to cope with, as well as may have limited customization possibilities in terms of the covered data scope. Also, if you use more than one cloud, or have private datacenters, the fact that each of these tools is limited to its vendor, may be a reason for you to find a third-party analytics tool. Here is where you may consider solutions such as CloudHealth, AppOptics, or IBM C
Read more

Maestro: Greeting the Green Dragon

Image
The year is coming to the end, and it's high time for our traditional lookback on Maestro evolution, changes, and important events. The year of 2023 has been dynamic and full of updates, both technical and strategic.  We kept to our previous commitments , meanwhile adjusting to the new trends in Cloud and technologies in general.  We met our user's expectation and need for  cross-cloud FinOps, automated infrastructure analytics, security assessment and the "Fix it" button , aimed to simplify issues remediation. We also took into account the rising demand for  Open Stack-based resources, Cloud Native approaches,  AI/ML integrations .  As a result, we came up with our standard "six release per year" cycle, highlighted with the following milestones: Maestro Insights With the ML technologies growth, the amount of services offering infrastructure recommendations and analytics, grow. This is true for the public cloud providers' native services, as well as thir
Read more

Maestro Orchestrator: Product? SaaS? Framework!

Image
In 2012, EPAM Cloud Orchestrator was created as a cloud solution for the EPAM Systems community. It appeared when the issue of redesigning the growing infrastructure of more than 500 projects became critical. After a thorough analysis of the existing solutions, EPAM experts had to admit that none of them fit the company needs. However, that was not a problem but a challenge. If no perfect solution existed, EPAM created its own from scratch. In six years, EPAM Cloud Orchestrator evolved into a true hybrid cloud with over 8000 virtual machines in hundreds of projects. In addition to its basic function - hosting virtual resources - it supports a number of related components helping the users to be in full control of their virtual infrastructures, such as audit, monitoring, billing, reporting. Meanwhile, a time has come to go out of the box of an enterprise solution and meet the market. This is how the new generation of EPAM Cloud Orchestrator - Maestro was born. Maestro is
Read more