[连载教程二]CentOS 6.3上通过源码安装Openstack Folsom之Keystone安装

jiabanl

[连载教程二]CentOS 6.3上通过源码安装Openstack Folsom之Keystone安装

原文 http://www.openstack.org.cn/blog/blog.php?do=showone&uid=15150&type=blog&itemid=77作者 董权毅   系统环境 操作系统：CentOS 6.3 x86_64    服务器网络：            eth0：172.16.24.138            eth1：quantum使用            quantum使用FlatDHCP模式 OpenStack软件版本 OpenStack组件名称 组件版本号 Nova 2012.2.2 [Folsom Releae第二次修正版] Glance 2012.2.1 [Folsom Releae第一次修正版] Keystone 2012.2.1 [Folsom Releae第一次修正版] Cinder 2012.2.1 [Folsom Releae第一次修正版] Quantum 2012.2.1 [Folsom Releae第一次修正版] Horizon 2012.2.1 [Folsom Releae第一次修正版] OpenStack组件名称 组件版本号 NoVNC GitHub python-novaclient GitHub python-glanceclient GitHub python-keystoneclient GitHub python-cinderclient GitHub python-quantumclient GitHub python-swiftclient GitHub 1. Keystone依赖库安装 yum install -y python-devel libxslt-devel openssl-devel MySQL-python 2. Keystone安装 wget https://launchpad.net/keystone/folsom/2012.2.1/+download/keystone-2012.2.1.tar.gz    tar xf keystone-2012.2.1.tar.gz    cd keystone-2012.2.1/tools    pip-python install -r pip-requires    cd ..    python setup.py install 3. python-keystoneclient安装 git clone https://github.com/openstack/python-keystoneclient.git    cd python-keystoneclient/tools/    pip-python install -r pip-requires    pip-python install hgtools    pip-python install keyring    cd ..    python setup.py install    4. 创建Keystone服务启动用户 useradd -c 'OpenStack Keystone Daemons' -s /sbin/nologin -d /var/lib/keystone keystone -M 4.1  创建Keystone配置文件目录及拷贝配置文件 （具体路径根据你解压keystone的路径来定） mkdir /etc/keystone    mkdir /var/log/keystone    mkdir /var/lib/keystone    mkdir /var/run/keystone    cp /opt/keystone-2012.2.1/etc/default_catalog.templates /etc/keystone/    cp /opt/keystone-2012.2.1/etc/keystone.conf.sample /etc/keystone/keystone.conf    cp /opt/keystone-2012.2.1/etc/logging.conf.sample /etc/keystone/logging.conf    cp /opt/keystone-2012.2.1/etc/policy.json /etc/keystone/    4.2 创建及配置Keystone所使用MySQL数据库 ，如果报错 注意mysql服务是否启动 mysql -uroot -popenstack -e 'create database keystone'    mysql -uroot -popenstack -e "grant select,insert,update,delete,create,alter,drop,index on keystone.* to keystone@localhost identified by 'keystone'"    4.3 替换/etc/keystone/default_catalog.templates文件   #示例配置文件中的ip地址请自行修改 wget http://www.xiaoyinzei.com/files/openstack/folsom/keystone/etc/default_catalog.templates    -O /etc/keystone/default_catalog.templates 4.4 下载keystone初始化数据脚本   # 默认dashboard登陆密码secrete   # 默认服务密码secrete   # 默认服务tenant为tenant wget http://www.xiaoyinzei.com/files/openstack/folsom/keystone/etc/keystone_data.sh -O /etc/keystone/keystone_data.sh 4.5 更改/etc/keystone/keystone.conf文件的如下一些选项 sed -i 's/# admin_token = ADMIN/admin_token = ADMIN/g' /etc/keystone/keystone.conf    sed -i 's/# bind_host = 0.0.0.0/bind_host = 0.0.0.0/g' /etc/keystone/keystone.conf    sed -i 's/# public_port = 5000/public_port = 5000/g' /etc/keystone/keystone.conf    sed -i 's/# admin_port = 35357/admin_port = 35357/g' /etc/keystone/keystone.conf    sed -i 's/# compute_port = 8774/compute_port = 8774/g' /etc/keystone/keystone.conf    sed -i 's/# verbose = False/verbose = True/g' /etc/keystone/keystone.conf    sed -i 's/# debug = False/debug = True/g' /etc/keystone/keystone.conf    sed -i 's/# log_file = keystone.log/log_file = keystone.log/g' /etc/keystone/keystone.conf    sed -i 's/# log_dir = \/var\/log\/keystone/log_dir = \/var\/log\/keystone/g' /etc/keystone/keystone.conf    sed -i 's/# use_syslog = False/use_syslog = False/g' /etc/keystone/keystone.conf    sed -i 's/# connection = sqlite:\/\/\/keystone.db/connection = mysql:\/\/keystone:keystone@localhost\/keystone/g' /etc/keystone/keystone.conf    sed -i 's/# driver = keystone.identity.backends.sql.Identity/driver = keystone.identity.backends.sql.Identity/g' /etc/keystone/keystone.conf    sed -i 's/# driver = keystone.catalog.backends.templated.TemplatedCatalog/driver = keystone.catalog.backends.templated.TemplatedCatalog/g' /etc/keystone/keystone.conf    sed -i 's/# template_file = default_catalog.templates/template_file = \/etc\/keystone\/default_catalog.templates/g' /etc/keystone/keystone.conf    sed -i 's/# driver = keystone.token.backends.kvs.Token/driver = keystone.token.backends.kvs.Token/g' /etc/keystone/keystone.conf    sed -i 's/# expiration = 86400/expiration = 86400/g' /etc/keystone/keystone.conf    sed -i 's/# driver = keystone.policy.backends.rules.Policy/driver = keystone.policy.backends.rules.Policy/g' /etc/keystone/keystone.conf    sed -i 's/# driver = keystone.contrib.ec2.backends.kvs.Ec2/driver = keystone.contrib.ec2.backends.kvs.Ec2/g' /etc/keystone/keystone.conf    4.6 配置Keystone日志备份机制 wget http://www.xiaoyinzei.com/files/openstack/folsom/keystone/logrotate/openstack-keystone.logrotate -O /etc/logrotate.d/openstack-keystone 4.7 创建Keystone服务管理脚本 wget http://www.xiaoyinzei.com/files/openstack/folsom/keystone/init/openstack-keystone.init -O /etc/rc.d/init.d/openstack-keystone 4.8 设置相关目录及文件权限 chown -R keystone:keystone /var/log/keystone    chown -R keystone:keystone /var/lib/keystone    chown -R keystone:keystone /var/run/keystone    chmod 755 /etc/rc.d/init.d/openstack-keystone 4.9 初始化keystone数据库表结构 keystone-manage db_sync 4.10 启动keystone服务 /etc/init.d/openstack-keystone start 4.11 初始化keystone数据 bash /etc/keystone/keystone_data.sh 4.12 设置Keystone服务为系统服务并使服务开机自启 chkconfig --add openstack-keystone    chkconfig --level 3 openstack-keystone on