1、centos openstack grizzly 安装配置准备环境1、配置yum源CentOS6-Base-163.repobasename=CentOS-$releasever - Base - baseurl=#mirrorlist=http:/mirrorlist.centos.org/?release=$releasever&arch=$basearch&repo=osgpgcheck=0gpgkey=http:/mirror.centos.org/centos/RPM-GPG-KEY-CentOS-6#released updatesupdatesname=CentOS-$relea
2、sever - Updates - baseurl=#mirrorlist=http:/mirrorlist.centos.org/?release=$releasever&arch=$basearch&repo=updatesgpgcheck=0gpgkey=http:/mirror.centos.org/centos/RPM-GPG-KEY-CentOS-6#additional packages that may be usefulextrasname=CentOS-$releasever - Extras - baseurl=#mirrorlist=http:/mirrorlist.c
3、entos.org/?release=$releasever&arch=$basearch&repo=extrasgpgcheck=0gpgkey=http:/mirror.centos.org/centos/RPM-GPG-KEY-CentOS-6#additional packages that extend functionality of existing packagescentosplusname=CentOS-$releasever - Plus - baseurl=#mirrorlist=http:/mirrorlist.centos.org/?release=$release
4、ver&arch=$basearch&repo=centosplusgpgcheck=0enabled=0gpgkey=http:/mirror.centos.org/centos/RPM-GPG-KEY-CentOS-6#contrib - packages by Centos Userscontribname=CentOS-$releasever - Contrib - baseurl=#mirrorlist=http:/mirrorlist.centos.org/?release=$releasever&arch=$basearch&repo=contribgpgcheck=0enabl
5、ed=0gpgkey=http:/mirror.centos.org/centos/RPM-GPG-KEY-CentOS-6epel.repo epelname=Extra Packages for Enterprise Linux 6 - $basearchbaseurl=#mirrorlist=https:/mirrors.fedoraproject.org/metalink?repo=epel-6&arch=$basearchfailovermethod=priorityenabled=1gpgcheck=0gpgkey=file:/etc/pki/rpm-gpg/RPM-GPG-KEY
6、-EPEL-6epel-debuginfoname=Extra Packages for Enterprise Linux 6 - $basearch - Debugbaseurl=#mirrorlist=https:/mirrors.fedoraproject.org/metalink?repo=epel-debug-6&arch=$basearchfailovermethod=priorityenabled=0gpgkey=file:/etc/pki/rpm-gpg/RPM-GPG-KEY-EPEL-6gpgcheck=0epel-sourcename=Extra Packages for
7、 Enterprise Linux 6 - $basearch - Sourcebaseurl=#mirrorlist=https:/mirrors.fedoraproject.org/metalink?repo=epel-source-6&arch=$basearchfailovermethod=priorityenabled=0gpgkey=file:/etc/pki/rpm-gpg/RPM-GPG-KEY-EPEL-6gpgcheck=0openstack.repo openstackbaseurl=http:/rdo.fedorapeople.org/openstack/opensta
8、ck-grizzly/epel-6gpgcheck=0安装前准备1、 安装OpenStack Utilities #yum install -y openstack-utils dnsmasq-utils2、更新系统# yum update3、关闭iptables# service iptables stop# chkconfig iptables off4.关闭selinux# vi /etc/selinux/configSELINUX=disabled5、重启服务器# reboot6、安装qpid # yum install -y qpid-cpp-server# sed -i -e s/
9、auth=.*/auth=no/g /etc/qpidd.conf# service qpidd start# chkconfig qpidd on部署KeyStone1、安装KeyStone # yum install -y openstack-keystone2、初始化数据库# openstack-db -init -service keystone -password PASSWORD如果没有安装mysql,会在这步安装,这里默认密码PASSWORD 3、生成Token,并设置环境变量# export SERVICE_TOKEN=$(openssl rand -hex 10)# expo
10、rt SERVICE_ENDPOINT=http:/10.9.0.206:35357/v2.0# echo $SERVICE_TOKEN /tmp/ks_admin_token71068df694f4c46201564、修改配置文件# openstack-config -set /etc/keystone/keystone.conf DEFAULT admin_token $SERVICE_TOKEN# openstack-config -set /etc/keystone/keystone.conf signing token_format UUID5、启动keystone服务# servi
11、ce openstack-keystone start# chkconfig openstack-keystone on6、查看是否启动正常# ps -ef | grep -i keystone-allkeystone 2331 1 3 15:24 ? 00:00:00 /usr/bin/python /usr/bin/keystone-all -config-file /etc/keystone/keystone.confroot 2339 1902 0 15:24 pts/0 00:00:00 grep -i keystone-all# grep ERROR /var/log/keysto
12、ne/keystone.log7、创建Keystone服务,并注册Endpoint# keystone service-create -name=keystone -type=identity -description=Keystone Identity Service+-+-+| Property | Value |+-+-+| description | Keystone Identity Service | id | b987bd18f91a47709d1c191ca924f4db | name | keystone | type | identity |+-+-+# keystone
13、endpoint-create -service_id b987bd18f91a47709d1c191ca924f4db -publicurl http:/10.9.0.206:5000/v2.0 -adminurl http:/10.9.0.206:35357/v2.0 -internalurl http:/10.9.0.206:5000/v2.0+-+-+| Property | Value |+-+-+| adminurl | http:/10.9.0.206:35357/v2.0 | id | a86e402ec8144c0ba560f9b917c65981 | internalurl
14、 | http:/10.9.0.206:5000/v2.0 | publicurl | http:/10.9.0.206:5000/v2.0 | region | regionOne | service_id | b987bd18f91a47709d1c191ca924f4db |+-+-+其中service_id和上面创建service的返回ID对应8、创建admin用户a) 创建admin用户# keystone user-create -name admin -pass PASSWORD+-+-+| Property | Value |+-+-+| email | | enabled |
15、 True | id | 8179d4236cd147f2a9670df1616882a0 | name | admin | tenantId | |+-+-+b) 创建admin role# keystone role-create -name admin+-+-+| Property | Value |+-+-+| id | c44c1e8f4b8c4efa82beb83a847dd0ca | name | admin |+-+-+c) 创建admin tenant# keystone tenant-create -name admin+-+-+| Property | Value |+-
16、+-+| description | | enabled | True | id | 78b342b561ed4fb79ab764b828473f93 | name | admin |+-+-+d)将admin用户加入到admin role中# keystone user-role-add -user-id 8179d4236cd147f2a9670df1616882a0 -role-id c44c1e8f4b8c4efa82beb83a847dd0ca -tenant-id 78b342b561ed4fb79ab764b828473f93e)设置admin的环境变量# vi keystone
17、rc_adminexport OS_USERNAME=adminexport OS_TENANT_NAME=adminexport OS_PASSWORD=PASSWORDexport OS_AUTH_URL=http:/10.9.0.205:35357/v2.0/export PS1=uh W(keystone_admin)$ f)测试是否创建完成# unset SERVICE_TOKEN# unset SERVICE_ENDPOINT# source /keystonerc_admin# keystone user-list9、创建一个普通用户# keystone user-create
18、-name tcommerce -pass PASSWORD+-+-+| Property | Value |+-+-+| email | | enabled | True | id | ad91d8062e5e48b185aa0e0847d4b860 | name | tcommerce | tenantId | |+-+-+# keystone role-create -name user+-+-+| Property | Value |+-+-+| id | c5689d23e5a04465831f5e39caff1099 | name | user |+-+-+# keystone t
19、enant-create -name user+-+-+| Property | Value |+-+-+| description | | enabled | True | id | f380922e9d844b77b7c1cb742c7ca04b | name | user |+-+-+keystone user-role-add -user-id ad91d8062e5e48b185aa0e0847d4b860 -role-id c5689d23e5a04465831f5e39caff1099 -tenant-id f380922e9d844b77b7c1cb742c7ca04b#vim
20、 keystonerc_tcommerceexport OS_USERNAME=tcommerceexport OS_TENANT_NAME=userexport OS_PASSWORD=PASSWORDexport OS_AUTH_URL=http:/10.9.0.206:5000/v2.0/export PS1=uh W(tcommerce)$ # source keystonerc_tcommerce# keystone user-listUnable to communicate with identity service: error: message: You are not au
21、thorized to perform the requested action: admin_required, code: 403, title: Not Authorized. (HTTP 403)# keystone token-get+-+-+| Property | Value |+-+-+| expires | 2013-04-25T08:14:28Z | id | 1360775bf4504e84881689e6b9b4fff6 | tenant_id | f380922e9d844b77b7c1cb742c7ca04b | user_id | ad91d8062e5e48b1
22、85aa0e0847d4b860 |+-+-+部署Glance1、安装glance# yum install -y openstack-glance2、设置环境变量# source /keystonerc_admin3、初始数据库# openstack-db -init -service glance -password PASSWORD4、修改配置文件# openstack-config -set /etc/glance/glance-api.conf paste_deploy flavor keystone# openstack-config -set /etc/glance/glance-api.conf keystone_authtoken admin_tenant_name admin# openstack-config -set /etc/glance/glance-api.conf keyst
copyright@ 2008-2022 冰豆网网站版权所有
经营许可证编号:鄂ICP备2022015515号-1