###openstack-ocata 单节点安装 部署 目录汇总
一. 创建keystone数据库端点,数据库等
mysql -u root -p
CREATE DATABASE keystone;
GRANT ALL PRIVILEGES ON keystone.* TO 'keystone'@'localhost' IDENTIFIED BY 'KEYSTONE_DBPASS';
GRANT ALL PRIVILEGES ON keystone.* TO 'keystone'@'%' IDENTIFIED BY 'KEYSTONE_DBPASS';
--------------------------------------------------------------------------------
二 . 安装keystone软件包
yum install openstack-keystone httpd mod_wsgi
--------------------------------------------------------------------------------
三 . 配置keystone文件
cp /etc/keystone/keystone.conf{,.bak}
>/etc/keystone/keystone.conf
echo "
[DEFAULT]
verbose = true
[database]
connection = mysql+pymysql://keystone:KEYSTONE_DBPASS@controller/keystone
[token]
provider = ferne
">/etc/keystone/keystone.conf
--------------------------------------------------------------------------------
四 . 填充数据库服务
su -s /bin/sh -c "keystone-manage db_sync" keystone
--------------------------------------------------------------------------------
五 . 初始化存储库
keystone-manage fernet_setup --keystone-user keystone --keystone-group keystone
keystone-manage credential_setup --keystone-user keystone --keystone-group keystone
--------------------------------------------------------------------------------
六 . 引导身份服务
keystone-manage bootstrap --bootstrap-password ADMIN_PASS \
--bootstrap-admin-url http://controller:35357/v3/ \
--bootstrap-internal-url http://controller:5000/v3/ \
--bootstrap-public-url http://controller:5000/v3/ \
--bootstrap-region-id RegionOne
--------------------------------------------------------------------------------
七 . 编辑httpd 配置文件
cp /etc/httpd/conf/httpd.conf{,.bak}
echo "ServerName controller">>/etc/httpd/conf/httpd.conf
ln -s /usr/share/keystone/wsgi-keystone.conf /etc/httpd/conf.d/
-------------------------------------------------------------------------------
八 . 启动keystone服务并设置开机自动启动
systemctl enable httpd.service
systemctl start httpd.service
systemctl status httpd.service
--------------------------------------------------------------------------------
九 . 配置身份认证文件
echo '
export OS_USERNAME=admin
export OS_PASSWORD=ADMIN_PASS
export OS_PROJECT_NAME=admin
export OS_USER_DOMAIN_NAME=Default
export OS_PROJECT_DOMAIN_NAME=Default
export OS_AUTH_URL=http://controller:35357/v3
export OS_IDENTITY_API_VERSION=3
'>>/root/adminrc
--------------------------------------------------------------------------------
十 . 创建域,项目,用户和角色
openstack project create --domain default --description "Service Project" service
openstack project create --domain default --description "Demo Project" demo
openstack user create --domain default --password-prompt demo
openstack role create user
openstack role add --project demo --user demo user
--------------------------------------------------------------------------------
十一 . 创建demo用户认证
echo '
export OS_PROJECT_DOMAIN_NAME=Default
export OS_USER_DOMAIN_NAME=Default
export OS_PROJECT_NAME=demo
export OS_USERNAME=demo
export OS_PASSWORD=demo
export OS_AUTH_URL=http://controller:5000/v3
export OS_IDENTITY_API_VERSION=3
export OS_IMAGE_API_VERSION=2
'>>/root/demorc
--------------------------------------------------------------------------------
十三 . 验证
. adminrc
openstack user list
.demorc
openstack user list