多条告白如次剧本只需引入一次
OpenStack安置安置
一、普通筹备处事
安置情况:CentOS 7 64
1、封闭当地iptables风火墙并树立开机不自启用
# systemctl stop firewalld.service# systemctl disable firewalld.service2、封闭当地selinux风火墙
# vim /etc/sysconfig/selinux SELINUX=disabled# setenforce 03、树立长机计划机称呼
# hostnamectl set-hostname controller4、当地长机称呼和ip的领会
# vim /etc/hosts192.168.0.104 controller5、安置ntp功夫校准东西
# yum -y install ntp# ntpdate asia.pool.ntp.org6、安置第三方yum源
# yum -y install yum-plugin-priorities# yum -y install http://dl.fedoraproject.org/pub/epel/7/x86_64/e/epel-release-7-2.noarch.rpm# yum -y install http://rdo.fedorapeople.org/openstack-juno/rdo-release-juno.rpm7、晋级体例软硬件包并从新体例
# yum upgrade# reboot二、安置摆设mariadb数据库
1、安置mariadb数据库
# yum -y install mariadb mariadb-server MySQL-python2、摆设mariadb数据库
# cp /etc/my.cnf /etc/my.cnf.bak# rpm -ql mariadb# vim /etc/my.cnf.d/server.cnf[mysqld]bind-address = 0.0.0.0default-storage-engine = innodbinnodb_file_per_tablecollation-server = utf8_general_ciinit-connect = 'SET NAMES utf8'character-set-server = utf83、启用mariadb数据库
# systemctl enable mariadb.service# systemctl start mariadb.service三、安置动静部队效劳
1、安置rabbit所需软硬件包
# yum -y install rabbitmq-server2、启用rabbit效劳
# systemctl enable rabbitmq-server.service# systemctl start rabbitmq-server.service3、树立rabbit效劳暗号
# rabbitmqctl change_password guest rabbit四、安置keyston用户认证组件
1、创造keystone数据库和受权用户
mysql -u root -pCREATE DATABASE keystone;GRANT ALL PRIVILEGES ON keystone.* TO 'keystone'@'localhost' IDENTIFIED BY 'keystone';GRANT ALL PRIVILEGES ON keystone.* TO 'keystone'@'%' IDENTIFIED BY 'keystone';2、安置keystone组件包
# yum -y install openstack-utils openstack-keystone python-keystoneclient3、摆设keystone文献
# cp /etc/keystone/keystone.conf /etc/keystone/keystone.conf.bak# vim /etc/keystone/keystone.conf [DEFAULT]verbose = True[database]connection = mysql://keystone:keystone@controller/keystone[token]provider = keystone.token.providers.uuid.Providerdriver = keystone.token.persistence.backends.sql.Token4、创造文凭和秘钥文献
# keystone-manage pki_setup --keystone-user keystone --keystone-group keystone# chown -R keystone:keystone /var/log/keystone# chown -R keystone:keystone /etc/keystone/ssl# chmod -R o-rwx /etc/keystone/ssl5、同步keystone到mariadb数据库
# su -s /bin/sh -c "keystone-manage db_sync" keystone6、启用keystone效劳并开机自启用
# systemctl enable openstack-keystone.service# systemctl start openstack-keystone.service7、废除过时的令牌
默许情景下,身份效劳保存在数据库中过时的令牌无穷 。到时令牌的积聚大大减少数据库的巨细,大概会贬低效劳的本能,更加是在资源有限的情况中 。咱们倡导您运用cron摆设一个周期性工作,废除过时的令牌时
# (crontab -l -u keystone 2>&1 | grep -q token_flush) ||echo '@hourly /usr/bin/keystone-manage token_flush >/var/log/keystone/keystone-tokenflush.log 2>&1'>> /var/spool/cron/keystone—————————-Create tenants,user,and roles———————————
1、摆设admin的token
# export OS_SERVICE_TOKEN=$(openssl rand -hex 10)# export OS_SERVICE_ENDPOINT=http://controller:35357/v2.0# echo $OS_SERVICE_TOKEN > ~/ks_admin_token# openstack-config --set /etc/keystone/keystone.conf DEFAULT admin_token$OS_SERVICE_TOKEN# service openstack-keystone restart2、创造tenant、user and role
a.Create the admin tenant、user、role# keystone tenant-create --name admin --description "Admin Tenant"# keystone user-create --name admin --pass admin --email admin@zhengyansheng.com# keystone role-create --name adminb.Add the admin tenant and user to the admin role:# keystone user-role-add --tenant admin --user admin --role adminc.By default, the dashboard limits access to users with the _member_ role.# keystone role-create --name _member_d.Add the admin tenant and user to the _member_ role:# keystone user-role-add --tenant admin --user admin --role _member_3、创造一个普遍demo名目和用户
a.Create the demo tenant:# keystone tenant-create --name demo --description "Demo Tenant"b.Create the demo user:# keystone user-create --name demo --pass demo --email demo@zhengyansheng.comc.Add the demo tenant and user to the _member_ role:# keystone user-role-add --tenant demo --user demo --role _member_4、创造一个service名目
# keystone tenant-create --name service --description "Service Tenant"————————Create the service entity and API endpoint————————
推荐阅读
- 免费好用的微信第三方 微信第三方免费平台哪个好
- vmware创建linux虚拟机教程 linux搭建虚拟机
- 亲呗贷款平台怎么样「亲呗贷款app下载」
- 正规肾脏交易平台 正规肾脏交易
- 推广平台排行榜 网络推广平台有哪些渠道
- 四库平台,四库一平台官网
- 正规赚佣金的平台「佣金赚钱平台」
- 二手名表交易平台哪家靠谱「正规二手表交易平台」
- 网店哪个平台最靠谱 在哪开网店比较好
- 找工作哪个平台最可靠真实 找工作软件哪个最靠谱