yun1
OpenStack packages
yum install python-openstackclient -y
yum install openstack-selinux
SQL database
yum install mariadb mariadb-server python2-PyMySQL
vim /etc/my.cnf.d/openstack.cnf
[mysqld] bind-address = 192.168.254.131 default-storage-engine = innodb innodb_file_per_table = on max_connections = 4096 collation-server = utf8_general_ci character-set-server = utf8
systemctl enable mariadb.service
systemctl Start mariadb.service
mysql_secure_installation initialize the database (will do) password, etc.
Message queue
yum install rabbitmq-server
systemctl enable rabbitmq-server.service
systemctl start rabbitmq-server.service
rabbitmqctl add_user openstack admin
rabbitmqctl set_permissions openstack ".*" ".*" ".*" 给权限
Setting permissions for user "openstack" in vhost "/" Add openstack for administrators
Memcached
yum install memcached python-memcached
vim /etc/sysconfig/memcached
OPTIONS = "- l 127.0.0.1, :: 1, yun1" change line
systemctl enable memcached.service
systemctl start memcached.service
Identity service
Install and configure
mysql -u root -p
MariaDB [(none)]> CREATE DATABASE keystone;
MariaDB [(none)]> GRANT ALL PRIVILEGES ON keystone.* TO 'keystone'@'localhost' \
IDENTIFIED BY 'KEYSTONE_DBPASS';
MariaDB [(none)]> GRANT ALL PRIVILEGES ON keystone.* TO 'keystone'@'%' \
IDENTIFIED BY 'KEYSTONE_DBPASS';
OpenStack the install the httpd-Keystone yum mod_wsgi
CP keystone.conf a backup keystone.bak
/etc/keystone/keystone.conf
[DEFAULT]
[assignment]
[auth]
[cache]
[catalog]
[Hearts]
[cors.subdomain]
[credential]
[database]
connection = mysql+
pymysql://keystone:KEYSTONE_DBPASS@yun1/keystone
[domain_config]
[endpoint_filter]
[endpoint_policy]
[eventlet_server]
[federation]
[fernet_tokens]
[healthcheck]
[identity]
[identity_mapping]
[kvs]
[ldap]
[matchmaker_redis]
[memcache]
[oauth1]
[oslo_messaging_amqp]
[oslo_messaging_kafka]
[oslo_messaging_notifications]
[oslo_messaging_rabbit]
[oslo_messaging_zmq]
[oslo_middleware]
[oslo_policy]
[paste_deploy]
[policy]
[profiler]
[resource]
[revoke]
[role]
[Coll]
[security_compliance]
[shadow_users]
[signing]
[token]
provider = fernet
[tokenless_auth]
[trust]
su -s / bin / sh -c into the library after keystone "keystone-manage db_sync" keystone introduced import data tables to see if there
keystone-manage fernet_setup --keystone-user keystone --keystone-group keystone 设置用户 keytone管理组keytone
#keystone-manage credential_setup --keystone-user keystone --keystone-group keystone 认证
keystone-manage bootstrap --bootstrap-password admin \
--bootstrap-admin-url http://yun1:35357/v3/ \
--bootstrap-internal-url http://yun1:5000/v3/ \
--bootstrap-public-url http://yun1:5000/v3/ \
--bootstrap-region-id RegionOne
Configure the Apache HTTP server
vim /etc/httpd/conf/httpd.conf
ServerName yun1
ln -s /usr/share/keystone/wsgi-keystone.conf /etc/httpd/conf.d/ establish links
systemctl enable httpd.service # systemctl start httpd.service
vim openrc
export OS_USERNAME=admin
export OS_PASSWORD=admin export OS_PROJECT_NAME=admin export OS_USER_DOMAIN_NAME=Default export OS_PROJECT_DOMAIN_NAME=Default export OS_AUTH_URL=http://yun1:35357/v3 export OS_IDENTITY_API_VERSION=3
source openrc declare an environment variable
can be used openstack command