- 浏览: 54389 次
文章分类
- 全部博客 (98)
- openstack (14)
- spring+hibernate+jdbc (15)
- dashboard (1)
- Python (3)
- nova (2)
- ubuntu (1)
- Linux (2)
- apache (1)
- openstack,错误 (1)
- Windows (1)
- horizon (1)
- websocket (1)
- java (2)
- mybatis (4)
- quartz (2)
- git (1)
- spring,错误 (1)
- angularJS (8)
- redis (2)
- vim (1)
- virsh (1)
- jsp (1)
- react (1)
- openstack,openstack安装 (4)
- 社区 (1)
最新评论
-
haoningabc:
前后端都会啊,全栈女神啊
angularJS 弹出层 -
haoningabc:
好厉害,偶像
openstack安装--keystone
安装在controller节点
一、数据库
1、要求controller和compute节点的数据库能互相访问
2、 mysql -u root -p
3、生成一个随机的字符串
二、
1、安装memcached
2、Edit the /etc/keystone/keystone.conf file and complete the following actions:
同步keystone数据库
su -s /bin/sh -c "keystone-manage db_sync" keystone
注意:如果报错No handlers could be found for logger "oslo_config.cfg"
解决办法:去掉verbose = True这行
3、配置Apache
Edit the /etc/httpd/conf/httpd.conf file and configure the ServerName option to reference the controller node:
Create the /etc/httpd/conf.d/wsgi-keystone.conf file with the following content:
配置之后启动http服务
三、
1.设置环境变量
2.Create the service entity and API endpoints
报错:Unable to establish connection to http://controller:35357/v3/services
检查35357端口是否已经被监听,如果没有,就检查配置文件是否写错
3.创建endpoint
Create the Identity service API endpoints:
四、创建project、user、role并关联
1.admin
2.demo
五、
1、For security reasons, disable the temporary authentication token mechanism:
Edit the /usr/share/keystone/keystone-dist-paste.ini file and remove admin_token_auth from the [pipeline:public_api], [pipeline:admin_api], and [pipeline:api_v3] sections.
2、
3、As the admin user, request an authentication token:
用这一长串访问keystone时,不能有相关的环境变量,所以要unset
4、As the demo user, request an authentication token:
六、
1.Creating the scripts
2.Using the scripts
Request an authentication token:
一、数据库
1、要求controller和compute节点的数据库能互相访问
grant all on *.* to root@'%' identified by "mima" WITH GRANT OPTION; flush privileges;
2、 mysql -u root -p
CREATE DATABASE keystone; GRANT ALL PRIVILEGES ON keystone.* TO 'keystone'@'localhost' \ IDENTIFIED BY 'KEYSTONE_DBPASS'; GRANT ALL PRIVILEGES ON keystone.* TO 'keystone'@'%' \ IDENTIFIED BY 'KEYSTONE_DBPASS';
3、生成一个随机的字符串
openssl rand -hex 10 假设为aaaaa
二、
1、安装memcached
yum install openstack-keystone httpd mod_wsgi memcached python-memcached systemctl enable memcached.service systemctl start memcached.service
2、Edit the /etc/keystone/keystone.conf file and complete the following actions:
[DEFAULT] admin_token = ADMIN_TOKEN(aaaaa) verbose = True [database] connection = mysql://keystone:KEYSTONE_DBPASS@controller/keystone [memcache] servers = localhost:11211 [token] provider = uuid driver = memcache [revoke] driver = sql
同步keystone数据库
su -s /bin/sh -c "keystone-manage db_sync" keystone
注意:如果报错No handlers could be found for logger "oslo_config.cfg"
解决办法:去掉verbose = True这行
3、配置Apache
Edit the /etc/httpd/conf/httpd.conf file and configure the ServerName option to reference the controller node:
ServerName controller
Create the /etc/httpd/conf.d/wsgi-keystone.conf file with the following content:
Listen 5000 Listen 35357 <VirtualHost *:5000> WSGIDaemonProcess keystone-public processes=5 threads=1 user=keystone group=keystone display-name=%{GROUP} WSGIProcessGroup keystone-public WSGIScriptAlias / /usr/bin/keystone-wsgi-public WSGIApplicationGroup %{GLOBAL} WSGIPassAuthorization On <IfVersion >= 2.4> ErrorLogFormat "%{cu}t %M" </IfVersion> ErrorLog /var/log/httpd/keystone-error.log CustomLog /var/log/httpd/keystone-access.log combined <Directory /usr/bin> <IfVersion >= 2.4> Require all granted </IfVersion> <IfVersion < 2.4> Order allow,deny Allow from all </IfVersion> </Directory> </VirtualHost> <VirtualHost *:35357> WSGIDaemonProcess keystone-admin processes=5 threads=1 user=keystone group=keystone display-name=%{GROUP} WSGIProcessGroup keystone-admin WSGIScriptAlias / /usr/bin/keystone-wsgi-admin WSGIApplicationGroup %{GLOBAL} WSGIPassAuthorization On <IfVersion >= 2.4> ErrorLogFormat "%{cu}t %M" </IfVersion> ErrorLog /var/log/httpd/keystone-error.log CustomLog /var/log/httpd/keystone-access.log combined <Directory /usr/bin> <IfVersion >= 2.4> Require all granted </IfVersion> <IfVersion < 2.4> Order allow,deny Allow from all </IfVersion> </Directory> </VirtualHost>
配置之后启动http服务
systemctl enable httpd.service systemctl start httpd.service
三、
1.设置环境变量
export OS_TOKEN=ADMIN_TOKEN(aaaaa) export OS_URL=http://controller:35357/v3 export OS_IDENTITY_API_VERSION=3
2.Create the service entity and API endpoints
openstack service create --name keystone --description "OpenStack Identity" identity
报错:Unable to establish connection to http://controller:35357/v3/services
检查35357端口是否已经被监听,如果没有,就检查配置文件是否写错
3.创建endpoint
Create the Identity service API endpoints:
openstack endpoint create --region RegionOne identity public http://controller:5000/v2.0 openstack endpoint create --region RegionOne identity internal http://controller:5000/v2.0 openstack endpoint create --region RegionOne identity admin http://controller:35357/v2.0
四、创建project、user、role并关联
1.admin
openstack project create --domain default \ --description "Admin Project" admin openstack user create --domain default \ --password-prompt admin User Password: Repeat User Password: openstack role create admin openstack role add --project admin --user admin admin
2.demo
openstack project create --domain default \ --description "Service Project" service openstack project create --domain default \ --description "Demo Project" demo openstack user create --domain default \ --password-prompt demo User Password: Repeat User Password: openstack role create user openstack role add --project demo --user demo user
五、
1、For security reasons, disable the temporary authentication token mechanism:
Edit the /usr/share/keystone/keystone-dist-paste.ini file and remove admin_token_auth from the [pipeline:public_api], [pipeline:admin_api], and [pipeline:api_v3] sections.
2、
unset OS_TOKEN OS_URL
3、As the admin user, request an authentication token:
openstack --os-auth-url http://controller:35357/v3 \ --os-project-domain-id default --os-user-domain-id default \ --os-project-name admin --os-username admin --os-auth-type password \ token issue Password:
用这一长串访问keystone时,不能有相关的环境变量,所以要unset
4、As the demo user, request an authentication token:
openstack --os-auth-url http://controller:5000/v3 \ --os-project-domain-id default --os-user-domain-id default \ --os-project-name demo --os-username demo --os-auth-type password \ token issue Password:
六、
1.Creating the scripts
vim admin-openrc.sh export OS_PROJECT_DOMAIN_ID=default export OS_USER_DOMAIN_ID=default export OS_PROJECT_NAME=admin export OS_TENANT_NAME=admin export OS_USERNAME=admin export OS_PASSWORD=ADMIN_PASS //注意替换 export OS_AUTH_URL=http://controller:35357/v3 export OS_IDENTITY_API_VERSION=3
vim demo-openrc.sh export OS_PROJECT_DOMAIN_ID=default export OS_USER_DOMAIN_ID=default export OS_PROJECT_NAME=demo export OS_TENANT_NAME=demo export OS_USERNAME=demo export OS_PASSWORD=DEMO_PASS //注意替换 export OS_AUTH_URL=http://controller:5000/v3 export OS_IDENTITY_API_VERSION=3
2.Using the scripts
source admin-openrc.sh
Request an authentication token:
openstack token issue
发表评论
-
openstack安装--nova
2016-08-30 16:10 706在controller节点操作 创建Nova数据库 mysq ... -
openstack安装--glance
2016-08-29 15:01 702创建glance数据库 mysql -u root -p C ... -
openstack简单安装--环境准备
2016-08-29 14:43 601两台机器controller节点mcon compute节 ... -
horizon对sql表的增删改查操作
2016-03-29 15:13 937首先根据horizon/doc/source/tutorial ... -
Nova 架构
2016-03-24 15:53 872消息队列:松耦合、异步、负载均衡 运算工作站 网络控制器 F ... -
dashboard->admin->instance->action
2016-03-24 15:50 641admin->instance->虚拟机创建快照 ... -
dashboard 增加编辑按钮
2016-03-23 22:24 713用到其他目录下的文件,用到workflows 1.table ... -
dashboard增加删除虚拟机按钮
2016-03-23 14:15 434vim tables.py 新加如下内容 from dja ... -
nova 建虚拟机
2016-03-23 11:27 342要用Nova建虚拟机,首先要用neutron建立网络 1.建立 ... -
dashboard添加可编辑字段
2016-03-18 20:41 486在tables.py中添加如下代码: class Update ... -
dashborad 增加action
2016-03-17 12:03 630=============================== ... -
horizon 增加plugin
2016-03-16 21:27 421============== Horizon Plugin = ... -
horizon 添加目录
2016-03-15 20:03 1087在horizon中创建一个dashboard 1.在mydas ... -
openstack horizon开发环境配置
2016-03-15 19:48 896mkdir open_src cd open_src 1.选 ...
相关推荐
4. **初始化Keystone**:使用keystone-manage工具初始化数据库和配置文件。例如: ``` keystone-manage db_sync ``` 5. **配置Keystone**:编辑`/etc/keystone/keystone.conf`配置文件,配置数据库连接信息、...
官方离线安装包,亲测可用
官方离线安装包,测试可用。请使用rpm -ivh [rpm完整包名] 进行安装
官方离线安装包,测试可用。使用rpm -ivh [rpm完整包名] 进行安装
官方离线安装包,测试可用。使用rpm -ivh [rpm完整包名] 进行安装
### OpenStack Kilo 中文安装指南 #### 概述 OpenStack Kilo版本是一个重要的里程碑,在这个版本中引入了许多新特性以及对现有功能的重大改进。本文档为Red Hat Enterprise Linux 7、CentOS 7及Fedora 20等操作...
官方离线安装包,测试可用。使用rpm -ivh [rpm完整包名] 进行安装
官方离线安装包,测试可用。请使用rpm -ivh [rpm完整包名] 进行安装
在这个"OpenStack自动安装-Fuel.zip"压缩包中,包含了一个视频教程,旨在指导用户如何使用Fuel进行OpenStack的自动化安装和使用。 首先,OpenStack的安装通常涉及到多个步骤,包括配置硬件环境、安装基础操作系统、...
### 安装指南:OpenStack Ocata版本 #### 概述 OpenStack 是一个开源的云计算平台,它支持各种类型的云计算环境,并以其简单的实施、大规模的可扩展性和丰富的功能特性而著称。该平台由来自全球各地的云计算专家...
OpenStack Keystone token机制详解 OpenStack Keystone 是 OpenStack 的身份验证机制,token 是用户的一种凭证,需拿正确的用户名/密码向 Keystone 申请才能得到。token 是 OpenStack 中的核心概念之一,用户访问 ...
1.手动安装 liberty 版本 openstack 环境 2.手动安装 liberty 版本 openstack ...3.手动安装liberty版本openstack环境(allinone)---安装keystone 4.手动安装 liberty 版本 openstack 环境(allinone)---安装 glance
OpenStack培训-完整实验手册
例如,使用`openstack-db`命令创建数据库,用`keystone-manage`初始化Keystone服务。 ```bash sudo openstack-db --service nova --create --user nova --password nova sudo openstack-db --service neutron --...
6. **Keystone**: 认证服务,为OpenStack的所有服务提供身份验证和授权。 7. **Horizon**: Web门户,用户可以通过它来交互式地管理和控制OpenStack资源。 8. **Ceilometer**: 监控服务,收集各种资源的使用情况数据...
6-2Openstack-keystone 6-3Openstack-keystone 6-4Openstack-keystone 6-5Openstack-keystone 6-6Openstack-rabbitmq 7-1Openstack-cinder 7-2Openstack-cinder 7-3Openstack-cinder 7-4Openstack-swift 7-5...
OpenStack 安装 Keystone OpenStack 安装 Keystone 是 OpenStack 体系下面的认证、授权、和目录服务管理的重要组件。Keystone 通常是我们接触 OpenStack 的第一个组件,它可以管理其他 OpenStack 服务,每个服务都...
官方离线安装包,测试可用。使用rpm -ivh [rpm完整包名] 进行安装
### OpenStack在Ubuntu 14.04上的安装指南 #### 概述 本文档旨在指导用户如何在Ubuntu 14.04上安装并配置OpenStack,版本为Juno。OpenStack是一款开源云操作系统,它由多个独立但又相互关联的服务组成。这些服务...
官方离线安装包,测试可用。请使用rpm -ivh [rpm完整包名] 进行安装