[连载教程二]CentOS 6.3上通过源码安装Openstack Folsom之Keystone安装
[连载教程二]CentOS 6.3上通过源码安装Openstack Folsom之Keystone安装原文 http://www.openstack.org.cn/blog/blog.php?do=showone&uid=15150&type=blog&itemid=77作者 董权毅 系统环境
操作系统:CentOS 6.3 x86_64
服务器网络:
eth0:172.16.24.138
eth1:quantum使用
quantum使用FlatDHCP模式
OpenStack软件版本
OpenStack组件名称组件版本号Nova2012.2.2 Glance2012.2.1 Keystone2012.2.1 Cinder2012.2.1 Quantum2012.2.1 Horizon2012.2.1
OpenStack组件名称组件版本号NoVNCGitHubpython-novaclientGitHubpython-glanceclientGitHubpython-keystoneclientGitHubpython-cinderclientGitHubpython-quantumclientGitHubpython-swiftclientGitHub
1. Keystone依赖库安装
yum install -y python-devel libxslt-devel openssl-devel MySQL-python
2. Keystone安装
wget https://launchpad.net/keystone/folsom/2012.2.1/+download/keystone-2012.2.1.tar.gz
tar xf keystone-2012.2.1.tar.gz
cd keystone-2012.2.1/tools
pip-python install -r pip-requires
cd ..
python setup.py install
3. python-keystoneclient安装
git clone https://github.com/openstack/python-keystoneclient.git
cd python-keystoneclient/tools/
pip-python install -r pip-requires
pip-python install hgtools
pip-python install keyring
cd ..
python setup.py install
4. 创建Keystone服务启动用户
useradd -c 'OpenStack Keystone Daemons' -s /sbin/nologin -d /var/lib/keystone keystone -M
4.1创建Keystone配置文件目录及拷贝配置文件 (具体路径根据你解压keystone的路径来定)
mkdir /etc/keystone
mkdir /var/log/keystone
mkdir /var/lib/keystone
mkdir /var/run/keystone
cp /opt/keystone-2012.2.1/etc/default_catalog.templates /etc/keystone/
cp /opt/keystone-2012.2.1/etc/keystone.conf.sample /etc/keystone/keystone.conf
cp /opt/keystone-2012.2.1/etc/logging.conf.sample /etc/keystone/logging.conf
cp /opt/keystone-2012.2.1/etc/policy.json /etc/keystone/
4.2 创建及配置Keystone所使用MySQL数据库 ,如果报错 注意mysql服务是否启动
mysql -uroot -popenstack -e 'create database keystone'
mysql -uroot -popenstack -e "grant select,insert,update,delete,create,alter,drop,index on keystone.* to keystone@localhost identified by 'keystone'"
4.3 替换/etc/keystone/default_catalog.templates文件
#示例配置文件中的ip地址请自行修改
wget http://www.xiaoyinzei.com/files/openstack/folsom/keystone/etc/default_catalog.templates -O /etc/keystone/default_catalog.templates
4.4 下载keystone初始化数据脚本
# 默认dashboard登陆密码secrete
# 默认服务密码secrete
# 默认服务tenant为tenant
wget http://www.xiaoyinzei.com/files/openstack/folsom/keystone/etc/keystone_data.sh -O /etc/keystone/keystone_data.sh
4.5 更改/etc/keystone/keystone.conf文件的如下一些选项
sed -i 's/# admin_token = ADMIN/admin_token = ADMIN/g' /etc/keystone/keystone.conf
sed -i 's/# bind_host = 0.0.0.0/bind_host = 0.0.0.0/g' /etc/keystone/keystone.conf
sed -i 's/# public_port = 5000/public_port = 5000/g' /etc/keystone/keystone.conf
sed -i 's/# admin_port = 35357/admin_port = 35357/g' /etc/keystone/keystone.conf
sed -i 's/# compute_port = 8774/compute_port = 8774/g' /etc/keystone/keystone.conf
sed -i 's/# verbose = False/verbose = True/g' /etc/keystone/keystone.conf
sed -i 's/# debug = False/debug = True/g' /etc/keystone/keystone.conf
sed -i 's/# log_file = keystone.log/log_file = keystone.log/g' /etc/keystone/keystone.conf
sed -i 's/# log_dir = \/var\/log\/keystone/log_dir = \/var\/log\/keystone/g' /etc/keystone/keystone.conf
sed -i 's/# use_syslog = False/use_syslog = False/g' /etc/keystone/keystone.conf
sed -i 's/# connection = sqlite:\/\/\/keystone.db/connection = mysql:\/\/keystone:keystone@localhost\/keystone/g' /etc/keystone/keystone.conf
sed -i 's/# driver = keystone.identity.backends.sql.Identity/driver = keystone.identity.backends.sql.Identity/g' /etc/keystone/keystone.conf
sed -i 's/# driver = keystone.catalog.backends.templated.TemplatedCatalog/driver = keystone.catalog.backends.templated.TemplatedCatalog/g' /etc/keystone/keystone.conf
sed -i 's/# template_file = default_catalog.templates/template_file = \/etc\/keystone\/default_catalog.templates/g' /etc/keystone/keystone.conf
sed -i 's/# driver = keystone.token.backends.kvs.Token/driver = keystone.token.backends.kvs.Token/g' /etc/keystone/keystone.conf
sed -i 's/# expiration = 86400/expiration = 86400/g' /etc/keystone/keystone.conf
sed -i 's/# driver = keystone.policy.backends.rules.Policy/driver = keystone.policy.backends.rules.Policy/g' /etc/keystone/keystone.conf
sed -i 's/# driver = keystone.contrib.ec2.backends.kvs.Ec2/driver = keystone.contrib.ec2.backends.kvs.Ec2/g' /etc/keystone/keystone.conf
4.6 配置Keystone日志备份机制
wget http://www.xiaoyinzei.com/files/openstack/folsom/keystone/logrotate/openstack-keystone.logrotate -O /etc/logrotate.d/openstack-keystone
4.7 创建Keystone服务管理脚本 wget http://www.xiaoyinzei.com/files/openstack/folsom/keystone/init/openstack-keystone.init -O /etc/rc.d/init.d/openstack-keystone
4.8 设置相关目录及文件权限
chown -R keystone:keystone /var/log/keystone
chown -R keystone:keystone /var/lib/keystone
chown -R keystone:keystone /var/run/keystone
chmod 755 /etc/rc.d/init.d/openstack-keystone
4.9 初始化keystone数据库表结构
keystone-manage db_sync
4.10 启动keystone服务
/etc/init.d/openstack-keystone start
4.11 初始化keystone数据
bash /etc/keystone/keystone_data.sh
4.12 设置Keystone服务为系统服务并使服务开机自启
chkconfig --add openstack-keystone
chkconfig --level 3 openstack-keystone on
页:
[1]