Person casually sitting in red chair working from desktop with 9 monitors connecting in backdrop
Jump to section

What is configuration management?

Copy URL

Configuration management is a process for maintaining computer systems, servers, applications, network devices, and other IT components in a desired state. It’s a way to help ensure that a system performs as expected, even after many changes are made over time. 

Using configuration management tools, administrators can set up an IT system, such as a server or workstation, then build and maintain other servers and workstations with the same settings. IT teams use configuration assessments and drift analyses to continuously identify systems that have strayed from the desired system state and need to be updated, reconfigured, or patched.

As a part of IT Service Management (ITSM) process, configuration management databases (CMDBs) track individual configuration items (CIs): any asset or component involved in the delivery of IT services. CMDBs store information about a CI’s attributes, dependencies, and changes to its configuration over time—enabling IT teams to map and maintain the relationships that tie CIs together.

In enterprise environments, IT teams manage a wide array of applications and systems, including clouds, networks, storage, servers, and edge devices. Just as it's important to set up systems correctly, performing regular, thorough maintenance helps prevent more costly problems in the future. 

System misconfigurations were identified in Red Hat's State of Kubernetes Security report as a leading cause of security incidents among containerized or Kubernetes-orchestrated environments. The introduction of minor inconsistencies or misconfiguration errors in IT systems can lead to configuration drift and ultimately slower systems, security and compliance exposures, and even outages. 

To prevent these issues, configuration management involves establishing a clear approach to documentation, maintenance, and change control so that systems can be configured consistently and accurately across complex environments.

Change management is an ITSM process that is related to—but distinct from—configuration management. It describes the policies and processes your organization follows when updating infrastructure or responding to critical events such as service performance degradation or outages.

IT teams typically use specialized software to define system settings—as well as build and maintain systems according to those baseline settings. Configuration management tools help system administrators keep track of the current state of applications and services, so that they can more quickly identify systems that require attention, determine remediation steps, prioritize actions, and validate completion.

Typical configuration management tools help teams to:

  • Classify and manage systems by groups and subgroups.
  • Centrally modify base configurations.
  • Roll out new settings to all applicable systems.
  • Automate system identification, patches, and updates.
  • Identify outdated, poorly performing, and noncompliant configurations.
  • Prioritize necessary actions.
  • Access and apply prescriptive remediation.

Due to the scale and complexity of most enterprise environments, IT teams now use automation to define and maintain the desired state of their various systems.

Automating configuration management is essential to establishing a reliable, consistent, and well-maintained IT environment at scale. Rather than relying on individuals to perform time-consuming manual configuration tasks, automation allows teams to consistently deploy and decommission infrastructure components in less time, with fewer opportunities for human mistakes. It also makes it possible to maintain consistent system settings across datacenter, cloud, and edge environments for an application’s entire life cycle, minimizing both performance and security issues.

Automation can help enterprises reduce costs, complexity, and manual errors in a variety of IT use cases:

  • Infrastructure automation: configure and manage server infrastructure to enforce consistency and eliminate configuration drift.
  • Cloud automation: configure and manage cloud resources including operating systems, security groups, load balancers, and virtual private clouds. 
  • Network automation: configure and manage network devices such routers and switches. 
  • Security automation: configure and manage security devices such as firewalls and intrusion detection systems— and apply consistent network access policies. 
  • Edge automation: configure and manage remote infrastructure systems including network, security, IoT devices, and server equipment.

Accelerate your IT with Automation as Code

Building on the strategic foundation of Infrastructure as Code (IaC), organizations are beginning to use these practices to automate IT processes at every stage of the operational life cycle. Just as IaC standardizes the build, provisioning, and deployment of infrastructure, IT teams can adopt Ops as Code and Policy as Code to codify the management, maintenance, and governance of systems after they are deployed.

Learn how to extend IaC into Day 2

For organizations with—or transitioning to—a hybrid cloud environment, an ideal configuration management solution will provide: 

  • Flexibility to manage physical datacenters, public clouds, and edge environments. 
  • Support for a variety of use cases including networking, security, applications, provisioning, and more. 
  • Integration with leading third-party platforms and solutions. 
  • A declarative structure that allows you to define the desired state you want—rather than an imperative structure, which requires you to provide specific commands to achieve the desired state.
  • Drift detection capabilities so that you can compare systems against one another or against a baseline setting.

Red Hat® Ansible® Automation Platform helps your organization accelerate, orchestrate, and innovate with automation. As you grow, you can scale your automation with control and insight, foster collaboration across teams, and manage policy and governance. 

Ansible Automation Platform includes all the tools needed to implement enterprise-wide automation, including content creation tools, YAML-based Ansible Playbooks, a visual dashboard, an event-driven solution, and rich performance analytics. It delivers Red Hat's open source innovation, hardened for your enterprise—so you can boost productivity and reduce time-to-completion for new projects.

With your Ansible Automation Platform subscription, you unlock Red Hat Ansible Certified Content and Ansible validated content—curated by both Red Hat and our robust partner ecosystem—access to hosted management services, and life cycle technical support that helps you fully integrate automation into your organization.

Icon-Red_Hat-Media_and_documents-Quotemark_Open-B-Red-RGB Automation is mission-critical at Southwest. Ansible Automation Platform is crucial as we continue our automation journey.

Carlos Tapia

Senior Systems Engineer, Southwest Airlines

Keep reading


Learning Ansible basics

Ansible automates IT processes like provisioning and configuration management. Learn the basics of Ansible with this introduction to key concepts.


What's an Ansible Playbook?

An Ansible Playbook is a blueprint of automation tasks, which are IT actions executed with limited manual effort across an inventory of IT solutions.


Why choose Red Hat for automation?

Red Hat Ansible Automation Platform includes all the tools needed to share automation across teams and implement enterprise-wide automation.

More about automation


A unified solution that combines the security, features, integrations, and flexibility needed to scale automation across domains, orchestrate essential workflows, and optimize IT operations for AI adoption. 

Engagements with our strategic advisers who take a big-picture view of your organization, analyze your challenges, and help you overcome them with comprehensive, cost-effective solutions.



Red Hat Ansible Automation Platform: A beginner’s guide

Customer Success Stories

See how our customers have used Ansible Automation Platform to accelerate IT operations


Code Comments Season 2: Hear how organizations have adapted to do more with IT automation 


Learning hub

Explore learning materials and tools designed to help you use Ansible Automation Platform, organized by the tasks you need to accomplish. 

Interactive Labs

These interactive scenarios let you start learning how to use Ansible Automation Platform for a variety of use cases—in your own browser. 

Technical Overview

This series of on-demand videos introduces you to using Ansible Automation Platform for a variety of use cases across IT environments.


This course will teach you how to automate Linux® system administration tasks with the latest version of Ansible Automation Platform.