{"id":6862,"date":"2017-07-13T10:11:21","date_gmt":"2017-07-13T02:11:21","guid":{"rendered":"http:\/\/rmohan.com\/?p=6862"},"modified":"2017-07-13T10:11:21","modified_gmt":"2017-07-13T02:11:21","slug":"centos-7-2-installation-deployment-openstack-tutorial","status":"publish","type":"post","link":"https:\/\/mohan.sg\/?p=6862","title":{"rendered":"CentOS 7.2 Installation Deployment OpenStack Tutorial"},"content":{"rendered":"

CentOS 7.2 Installation Deployment OpenStack Tutorial<\/strong><\/p>\n

Environmental preparation<\/strong><\/p>\n

 <\/p>\n

Share CentOS 7.2 installation deployment OpenStack tutorial, we want to help.<\/p>\n

1, the system environment<\/p>\n

# Uname -r<\/p>\n

3.10.0-327.el7.x86_64<\/p>\n

# Cat \/ etc \/ RedHat -release<\/p>\n

CentOS Linux release 7.2.1511 (Core)<\/p>\n

2, the server deployment<\/p>\n

IP<\/p>\n

CPU name<\/p>\n

Character<\/p>\n

Configuration<\/p>\n

192.168.56.108<\/p>\n

Controller<\/p>\n

Control node<\/p>\n

M: 4G; C: 2C; 50G<\/p>\n

192.168.56.109<\/p>\n

Compute<\/p>\n

Calculate nodes<\/p>\n

M: 2G; C: 2C; 50G<\/p>\n

3, the basic environment to prepare<\/p>\n

3.1, configure hosts<\/p>\n

# Cat \/ etc \/ hosts<\/p>\n

192.168.56.108 controller<\/p>\n

192.168.56.109 compute<\/p>\n

3.2, configure the time synchronization<\/p>\n

[Root @ controller ~] # yum install -y ntp<\/p>\n

[Root @ controller ~] # vim \/etc\/ntp.conf<\/p>\n

15 restrict -6 :: 1<\/p>\n

16 restrict 192.168.1.0 mask 255.255.255.0 nomodify notrap<\/p>\n

27 restrict 0.centos.pool.ntp.org nomodify notrap noquery<\/p>\n

28 restrict 1.centos.pool.ntp.org nomodify notrap noquery<\/p>\n

29 restrict 2.centos.pool.ntp.org nomodify notrap noquery<\/p>\n

30 restrict 3.centos.pool.ntp.org nomodify notrap noquery<\/p>\n

31 server 127.127.1.0<\/p>\n

32 fudge 127.127.1.0 stratum 10<\/p>\n

[Root @ controller ~] # systemctl enable ntpd<\/p>\n

[Root @ controller ~] # systemctl start ntpd<\/p>\n

Configure timing tasks on the control node and compute nodes<\/p>\n

[Root @ compute ~] # crontab -l * \/ 5 * * * * \/ usr \/ sbin \/ ntpdate 192.168.56.108> \/ dev \/ null 2> & 1<\/p>\n

3.3, turn off the firewall<\/p>\n

# Systemctl stop firewalld<\/p>\n

3.4, close selinux<\/p>\n

# SELINUX = disabled \/ etc \/ selinux \/ config \/\/ need to reboot<\/p>\n

3.5, install the basic package<\/p>\n

[Root @ controller ~] # yum install -yhttp: \/\/ dl. Fedora project.org\/pub\/epel\/7\/x86_64\/e\/epel-release-7-7.noarch.rpm<\/p>\n

[Root @ controller ~] # yum install -y centos-release-openstack-liberty<\/p>\n

[Root @ controller ~] # yum install -y python-openstackclient<\/p>\n

3.6, install mysql<\/p>\n

[Root @ controller ~] # yum install -y mariadb mariadb-server mysql-python<\/p>\n

[Root @ controller ~] # vim \/etc\/my.cnf<\/p>\n

Add the following lines in the mysqld module:<\/p>\n

Default-storage-engine = innodb<\/p>\n

Innodb_file_per_table<\/p>\n

Collation-server = utf8_general_ci<\/p>\n

Init-connect = ‘SET NAMES utf8’<\/p>\n

Character-set-server = utf8<\/p>\n

[Root @ controller ~] # systemctl enable mariadb.service<\/p>\n

[Root @ controller ~] # systemctl start mariadb.service<\/p>\n

[Root @ controller ~] # mysql_secure_installation<\/p>\n

3.7, install rabbitmq<\/p>\n

[Root @ controller ~] # yum install-y rabbitmq-server<\/p>\n

[Root @ controller ~] # systemctl enable rabbitmq-server.service<\/p>\n

[Root @ controller ~] # systemctl start rabbitmq-server.service<\/p>\n

[Root @ controller ~] # rabbitmqctl add_user openstack openstack<\/p>\n

Creating user “openstack” …<\/p>\n

… done.<\/p>\n

[Root @ controller ~] # rabbitmqctl set_permissions openstack ‘. *’ ‘. *’ ‘. *’<\/p>\n

Setting permissions for user “openstack” in vhost “\/” …<\/p>\n

… done.<\/p>\n

[Root @ controller ~] # rabbitmqctl set_user_tags openstack administrator<\/p>\n

[Root @ controller ~] # rabbitmq-plugins enable rabbitmq_management<\/p>\n

[Root @ controller ~] # systemctl restart rabbitmq-server.service<\/p>\n

In the browser, enter http:\/\/192.168.56.108:15672, the default account and password for the guest<\/p>\n

Login will be created before the openstack users to join admin, the results are as follows:<\/p>\n

 <\/p>\n

[root@controller ~]# mysql -u root -p
\n[root@controller ~]# CREATE DATABASE keystone;
\n[root@controller ~]# GRANT ALL PRIVILEGES ON keystone.* TO ‘keystone’@’localhost’ IDENTIFIED BY ‘PWS’;
\n[root@controller ~]# GRANT ALL PRIVILEGES ON keystone.* TO ‘keystone’@’%’ IDENTIFIED BY ‘PWS’;
\n[root@controller ~]# openssl rand -hex 10
\n2?keystone<\/p>\n

yum install openstack-keystone httpd mod_wsgi python-openstackclient memcached python-memcached
\n3?memcache<\/p>\n

# systemctl enable memcached.service
\n# systemctl start memcached.service
\n4?<\/p>\n

Edit the \/etc\/keystone\/keystone.conf file and complete the following actions:
\nIn the [DEFAULT] section, define the value of the initial administration token:
\n1
\n2
\n3
\n[DEFAULT]
\n…
\nadmin_token = ADMIN_TOKEN
\nReplace ADMIN_TOKEN with the random value that you generated in a previous step.
\nIn the [database] section, configure database access:
\n1
\n2
\n3
\n[database]
\n…
\nconnection = mysql:\/\/keystone:KEYSTONE_DBPASS@controller\/keystone
\nReplace KEYSTONE_DBPASS with the password you chose for the database.
\nIn the [memcache] section, configure the Memcache service:
\n1
\n2
\n3
\n[memcache]
\n…
\nservers = localhost:11211
\nIn the [token] section, configure the UUID token provider and Memcached driver:
\n1
\n2
\n3
\n4
\n[token]
\n…
\nprovider = keystone.token.providers.uuid.Provider
\ndriver = keystone.token.persistence.backends.memcache.Token
\nIn the [revoke] section, configure the SQL revocation driver:
\n1
\n2
\n3
\n[revoke]
\n…
\ndriver = keystone.contrib.revoke.backends.sql.Revoke
\n(Optional) To assist with troubleshooting, enable verbose logging in the [DEFAULT] section:
\n1
\n2
\n3
\n[DEFAULT]
\n…
\nverbose = True
\nPopulate the Identity service database:
\n# su -s \/bin\/sh -c “keystone-manage db_sync” keystone
\n5?HTTP<\/p>\n

Edit the \/etc\/httpd\/conf\/httpd.conf file and configure the ServerName option to reference the controller node:
\nServerName controller
\nCreate the \/etc\/httpd\/conf.d\/wsgi-keystone.conf file with the following content:
\nListen 5000
\nListen 35357<\/p>\n

<VirtualHost *:5000>
\nWSGIDaemonProcess keystone-public processes=5 threads=1 user=keystone group=keystone display-name=%{GROUP}
\nWSGIProcessGroup keystone-public
\nWSGIScriptAlias \/ \/var\/www\/cgi-bin\/keystone\/main
\nWSGIApplicationGroup %{GLOBAL}
\nWSGIPassAuthorization On
\nLogLevel info
\nErrorLogFormat “%{cu}t %M”
\nErrorLog \/var\/log\/httpd\/keystone-error.log
\nCustomLog \/var\/log\/httpd\/keystone-access.log combined
\n<\/VirtualHost><\/p>\n

<VirtualHost *:35357>
\nWSGIDaemonProcess keystone-admin processes=5 threads=1 user=keystone group=keystone display-name=%{GROUP}
\nWSGIProcessGroup keystone-admin
\nWSGIScriptAlias \/ \/var\/www\/cgi-bin\/keystone\/admin
\nWSGIApplicationGroup %{GLOBAL}
\nWSGIPassAuthorization On
\nLogLevel info
\nErrorLogFormat “%{cu}t %M”
\nErrorLog \/var\/log\/httpd\/keystone-error.log
\nCustomLog \/var\/log\/httpd\/keystone-access.log combined
\n<\/VirtualHost>
\nCreate the directory structure for the WSGI components:
\n# mkdir -p \/var\/www\/cgi-bin\/keystone
\nCopy the WSGI components from the upstream repository into this directory:
\n# curl http:\/\/git.openstack.org\/cgit\/openstack\/keystone\/plain\/httpd\/keystone.py?h=stable\/kilo | tee \/var\/www\/cgi-bin\/keystone\/main \/var\/www\/cgi-bin\/keystone\/admin
\nAdjust ownership and permissions on this directory and the files in it:
\n# chown -R keystone:keystone \/var\/www\/cgi-bin\/keystone
\n# chmod 755 \/var\/www\/cgi-bin\/keystone\/*
\nRestart the Apache HTTP server:
\n# systemctl enable httpd.service
\n# systemctl start httpd.service<\/p>\n","protected":false},"excerpt":{"rendered":"

CentOS 7.2 Installation Deployment OpenStack Tutorial<\/p>\n

Environmental preparation<\/p>\n

 <\/p>\n

Share CentOS 7.2 installation deployment OpenStack tutorial, we want to help.<\/p>\n

1, the system environment<\/p>\n

# Uname -r<\/p>\n

3.10.0-327.el7.x86_64<\/p>\n

# Cat \/ etc \/ RedHat -release<\/p>\n

CentOS Linux release 7.2.1511 (Core)<\/p>\n

2, the server deployment<\/p>\n

IP<\/p>\n

CPU name<\/p>\n

Character<\/p>\n

Configuration<\/p>\n

192.168.56.108<\/p>\n

Controller<\/p>\n

Control node<\/p>\n

M: 4G; […]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[66],"tags":[],"_links":{"self":[{"href":"https:\/\/mohan.sg\/index.php?rest_route=\/wp\/v2\/posts\/6862"}],"collection":[{"href":"https:\/\/mohan.sg\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/mohan.sg\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/mohan.sg\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/mohan.sg\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=6862"}],"version-history":[{"count":1,"href":"https:\/\/mohan.sg\/index.php?rest_route=\/wp\/v2\/posts\/6862\/revisions"}],"predecessor-version":[{"id":6863,"href":"https:\/\/mohan.sg\/index.php?rest_route=\/wp\/v2\/posts\/6862\/revisions\/6863"}],"wp:attachment":[{"href":"https:\/\/mohan.sg\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=6862"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/mohan.sg\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=6862"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/mohan.sg\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=6862"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}