centos openstack grizzly 安装配置.docx
《centos openstack grizzly 安装配置.docx》由会员分享,可在线阅读,更多相关《centos openstack grizzly 安装配置.docx(27页珍藏版)》请在冰豆网上搜索。
centosopenstackgrizzly安装配置
准备环境
1、配置yum源
CentOS6-Base-163.repo
[base]
name=CentOS-$releasever-Base-
baseurl=
#mirrorlist=http:
//mirrorlist.centos.org/?
release=$releasever&arch=$basearch&repo=os
gpgcheck=0
gpgkey=http:
//mirror.centos.org/centos/RPM-GPG-KEY-CentOS-6
#releasedupdates
[updates]
name=CentOS-$releasever-Updates-
baseurl=
#mirrorlist=http:
//mirrorlist.centos.org/?
release=$releasever&arch=$basearch&repo=updates
gpgcheck=0
gpgkey=http:
//mirror.centos.org/centos/RPM-GPG-KEY-CentOS-6
#additionalpackagesthatmaybeuseful
[extras]
name=CentOS-$releasever-Extras-
baseurl=
#mirrorlist=http:
//mirrorlist.centos.org/?
release=$releasever&arch=$basearch&repo=extras
gpgcheck=0
gpgkey=http:
//mirror.centos.org/centos/RPM-GPG-KEY-CentOS-6
#additionalpackagesthatextendfunctionalityofexistingpackages
[centosplus]
name=CentOS-$releasever-Plus-
baseurl=
#mirrorlist=http:
//mirrorlist.centos.org/?
release=$releasever&arch=$basearch&repo=centosplus
gpgcheck=0
enabled=0
gpgkey=http:
//mirror.centos.org/centos/RPM-GPG-KEY-CentOS-6
#contrib-packagesbyCentosUsers
[contrib]
name=CentOS-$releasever-Contrib-
baseurl=
#mirrorlist=http:
//mirrorlist.centos.org/?
release=$releasever&arch=$basearch&repo=contrib
gpgcheck=0
enabled=0
gpgkey=http:
//mirror.centos.org/centos/RPM-GPG-KEY-CentOS-6
epel.repo[epel]
name=ExtraPackagesforEnterpriseLinux6-$basearch
baseurl=
#mirrorlist=https:
//mirrors.fedoraproject.org/metalink?
repo=epel-6&arch=$basearch
failovermethod=priority
enabled=1
gpgcheck=0
gpgkey=file:
///etc/pki/rpm-gpg/RPM-GPG-KEY-EPEL-6
[epel-debuginfo]
name=ExtraPackagesforEnterpriseLinux6-$basearch-Debug
baseurl=
#mirrorlist=https:
//mirrors.fedoraproject.org/metalink?
repo=epel-debug-6&arch=$basearch
failovermethod=priority
enabled=0
gpgkey=file:
///etc/pki/rpm-gpg/RPM-GPG-KEY-EPEL-6
gpgcheck=0
[epel-source]
name=ExtraPackagesforEnterpriseLinux6-$basearch-Source
baseurl=
#mirrorlist=https:
//mirrors.fedoraproject.org/metalink?
repo=epel-source-6&arch=$basearch
failovermethod=priority
enabled=0
gpgkey=file:
///etc/pki/rpm-gpg/RPM-GPG-KEY-EPEL-6
gpgcheck=0
openstack.repo[openstack]
baseurl=http:
//rdo.fedorapeople.org/openstack/openstack-grizzly/epel-6
gpgcheck=0
安装前准备
1、安装OpenStackUtilities#yuminstall-yopenstack-utilsdnsmasq-utils
2、更新系统
#yumupdate
3、关闭iptables
#serviceiptablesstop
#chkconfigiptablesoff
4.关闭selinux
#vi/etc/selinux/config
SELINUX=disabled
5、重启服务器
#reboot
6、安装qpid#yuminstall-yqpid-cpp-server
#sed-i-e's/auth=.*/auth=no/g'/etc/qpidd.conf
#serviceqpiddstart
#chkconfigqpiddon
部署KeyStone
1、安装KeyStone#yuminstall-yopenstack-keystone
2、初始化数据库
#openstack-db--init--servicekeystone
--passwordPASSWORD
如果没有安装mysql,会在这步安装,这里默认密码PASSWORD3、生成Token,并设置环境变量
#exportSERVICE_TOKEN=$(opensslrand-hex10)
#exportSERVICE_ENDPOINT=http:
//10.9.0.206:
35357/v2.0
#echo$SERVICE_TOKEN>/tmp/ks_admin_token
71068df694f4c4620156
4、修改配置文件
#openstack-config--set/etc/keystone/keystone.conf
DEFAULTadmin_token$SERVICE_TOKEN
#openstack-config--set/etc/keystone/keystone.conf
signingtoken_formatUUID
5、启动keystone服务
#serviceopenstack-keystonestart
#chkconfigopenstack-keystoneon
6、查看是否启动正常
#ps-ef|grep-ikeystone-all
keystone 2331 1 315:
24?
00:
00:
00/usr/bin/python/usr/bin/keystone-all--config-file/etc/keystone/keystone.conf
root 2339 1902 015:
24pts/0 00:
00:
00grep-ikeystone-all
#grepERROR/var/log/keystone/keystone.log
7、创建Keystone服务,并注册Endpoint
#keystoneservice-create--name=keystone--type=identity
--description="KeystoneIdentityService"
+-------------+----------------------------------+
| Property | Value |
+-------------+----------------------------------+
|description| KeystoneIdentityService |
| id |b987bd18f91a47709d1c191ca924f4db|
| name | keystone |
| type | identity |
+-------------+----------------------------------+
#keystoneendpoint-create
--service_idb987bd18f91a47709d1c191ca924f4db
--publicurl'http:
//10.9.0.206:
5000/v2.0'
--adminurl'http:
//10.9.0.206:
35357/v2.0'
--internalurl'http:
//10.9.0.206:
5000/v2.0'
+-------------+----------------------------------+
| Property | Value |
+-------------+----------------------------------+
| adminurl | http:
//10.9.0.206:
35357/v2.0 |
| id |a86e402ec8144c0ba560f9b917c65981|
|internalurl| http:
//10.9.0.206:
5000/v2.0 |
| publicurl | http:
//10.9.0.206:
5000/v2.0 |
| region | regionOne |
| service_id|b987bd18f91a47709d1c191ca924f4db|
+-------------+----------------------------------+
其中service_id和上面创建service的返回ID对应
8、创建admin用户
a)创建admin用户
#keystoneuser-create--nameadmin--passPASSWORD
+----------+----------------------------------+
|Property| Value |
+----------+----------------------------------+
| email | |
|enabled | True |
| id |8179d4236cd147f2a9670df1616882a0|
| name | admin |
|tenantId| |
+----------+----------------------------------+
b)创建adminrole
#keystonerole-create--nameadmin
+----------+----------------------------------+
|Property| Value |
+----------+----------------------------------+
| id |c44c1e8f4b8c4efa82beb83a847dd0ca|
| name | admin |
+----------+----------------------------------+
c)创建admintenant
#keystonetenant-create--nameadmin
+-------------+----------------------------------+
| Property | Value |
+-------------+----------------------------------+
|description| |
| enabled | True |
| id |78b342b561ed4fb79ab764b828473f93|
| name | admin |
+-------------+----------------------------------+
d)将admin用户加入到adminrole中
#keystoneuser-role-add--user-id8179d4236cd147f2a9670df1616882a0
--role-idc44c1e8f4b8c4efa82beb83a847dd0ca
--tenant-id78b342b561ed4fb79ab764b828473f93
e)设置admin的环境变量
#vikeystonerc_admin
exportOS_USERNAME=admin
exportOS_TENANT_NAME=admin
exportOS_PASSWORD=PASSWORD
exportOS_AUTH_URL=http:
//10.9.0.205:
35357/v2.0/
exportPS1='[u@hW(keystone_admin)]$'
f)测试是否创建完成
#unsetSERVICE_TOKEN
#unsetSERVICE_ENDPOINT
#source~/keystonerc_admin
#keystoneuser-list
9、创建一个普通用户
#keystoneuser-create--nametcommerce--passPASSWORD
+----------+----------------------------------+
|Property| Value |
+----------+----------------------------------+
| email | |
|enabled | True |
| id |ad91d8062e5e48b185aa0e0847d4b860|
| name | tcommerce |
|tenantId| |
+----------+----------------------------------+
# keystonerole-create--nameuser
+----------+----------------------------------+
|Property| Value |
+----------+----------------------------------+
| id |c5689d23e5a04465831f5e39caff1099|
| name | user |
+----------+----------------------------------+
#keystonetenant-create--nameuser
+-------------+----------------------------------+
| Property | Value |
+-------------+----------------------------------+
|description| |
| enabled | True |
| id |f380922e9d844b77b7c1cb742c7ca04b|
| name | user |
+-------------+----------------------------------+
keystoneuser-role-add--user-idad91d8062e5e48b185aa0e0847d4b860
--role-idc5689d23e5a04465831f5e39caff1099
--tenant-idf380922e9d844b77b7c1cb742c7ca04b
#vimkeystonerc_tcommerce
exportOS_USERNAME=tcommerce
exportOS_TENANT_NAME=user
exportOS_PASSWORD=PASSWORD
exportOS_AUTH_URL=http:
//10.9.0.206:
5000/v2.0/
exportPS1='[u@hW(tcommerce)]$'
#sourcekeystonerc_tcommerce
#keystoneuser-list
Unabletocommunicatewithidentityservice:
{"error":
{"message":
"Youarenotauthorizedtoperformtherequestedaction:
admin_required","code":
403,"title":
"NotAuthorized"}}.(HTTP403)
#keystonetoken-get
+-----------+----------------------------------+
| Property| Value |
+-----------+----------------------------------+
| expires | 2013-04-25T08:
14:
28Z |
| id |1360775bf4504e84881689e6b9b4fff6|
|tenant_id|f380922e9d844b77b7c1cb742c7ca04b|
| user_id |ad91d8062e5e48b185aa0e0847d4b860|
+-----------+----------------------------------+
部署Glance
1、安装glance
#yuminstall-yopenstack-glance
2、设置环境变量
#source~/keystonerc_admin
3、初始数据库
#openstack-db--init--serviceglance
--passwordPASSWORD
4、修改配置文件
#openstack-config--set/etc/glance/glance-api.conf
paste_deployflavorkeystone
#openstack-config--set/etc/glance/glance-api.conf
keystone_authtokenadmin_tenant_nameadmin
#openstack-config--set/etc/glance/glance-api.conf
keyst