[連載教程二]CentOS 6.3上通過源碼安裝Openstack Folsom之Keystone安裝

[連載教程二]CentOS 6.3上通過源碼安裝Openstack Folsom之Keystone安裝

原文 http://www.openstack.org.cn/blog/blog.php?do=showone&uid=15150&type=blog&itemid=77

作者 董權毅

 

 

系統環境

 

操作系統：CentOS 6.3 x86_64    
服務器網絡：    
        eth0：172.16.24.138    
        eth1：quantum使用    
        quantum使用FlatDHCP模式

OpenStack軟件版本

OpenStack組件名稱	組件版本號
Nova	2012.2.2 [Folsom Releae第二次修正版]
Glance	2012.2.1 [Folsom Releae第一次修正版]
Keystone	2012.2.1 [Folsom Releae第一次修正版]
Cinder	2012.2.1 [Folsom Releae第一次修正版]
Quantum	2012.2.1 [Folsom Releae第一次修正版]
Horizon	2012.2.1 [Folsom Releae第一次修正版]

OpenStack組件名稱	組件版本號
NoVNC	GitHub
python-novaclient	GitHub
python-glanceclient	GitHub
python-keystoneclient	GitHub
python-cinderclient	GitHub
python-quantumclient	GitHub
python-swiftclient	GitHub

1. Keystone依賴庫安裝

yum install -y python-devel libxslt-devel openssl-devel MySQL-python

2. Keystone安裝

 

wget https://launchpad.net/keystone/folsom/2012.2.1/+download/keystone-2012.2.1.tar.gz    
tar xf keystone-2012.2.1.tar.gz    
cd keystone-2012.2.1/tools    
pip-python install -r pip-requires    
cd ..    
python setup.py install

3. python-keystoneclient安裝

 

git clone https://github.com/openstack/python-keystoneclient.git    
cd python-keystoneclient/tools/    
pip-python install -r pip-requires    
pip-python install hgtools    
pip-python install keyring    
cd ..    
python setup.py install    

4. 創建Keystone服務啓動用戶

useradd -c 'OpenStack Keystone Daemons' -s /sbin/nologin -d /var/lib/keystone keystone -M

4.1  創建Keystone配置文件目錄及拷貝配置文件 （具體路徑根據你解壓keystone的路徑來定）

 

mkdir /etc/keystone    
mkdir /var/log/keystone    
mkdir /var/lib/keystone    
mkdir /var/run/keystone    
cp /opt/keystone-2012.2.1/etc/default_catalog.templates /etc/keystone/    
cp /opt/keystone-2012.2.1/etc/keystone.conf.sample /etc/keystone/keystone.conf    
cp /opt/keystone-2012.2.1/etc/logging.conf.sample /etc/keystone/logging.conf    
cp /opt/keystone-2012.2.1/etc/policy.json /etc/keystone/    

4.2 創建及配置Keystone所使用MySQL數據庫 ，如果報錯 注意mysql服務是否啓動

mysql -uroot -popenstack -e 'create database keystone'    
mysql -uroot -popenstack -e "grant select,insert,update,delete,create,alter,drop,index on keystone.* to keystone@localhost identified by 'keystone'"    

4.3 替換/etc/keystone/default_catalog.templates文件
  #示例配置文件中的ip地址請自行修改

wget http://www.xiaoyinzei.com/files/openstack/folsom/keystone/etc/default_catalog.templates    -O /etc/keystone/default_catalog.templates

 

4.4 下載keystone初始化數據腳本

  # 默認dashboard登陸密碼secrete
  # 默認服務密碼secrete
  # 默認服務tenant爲tenant

wget http://www.xiaoyinzei.com/files/openstack/folsom/keystone/etc/keystone_data.sh -O /etc/keystone/keystone_data.sh

4.5 更改/etc/keystone/keystone.conf文件的如下一些選項

 

sed -i 's/# admin_token = ADMIN/admin_token = ADMIN/g' /etc/keystone/keystone.conf    
sed -i 's/# bind_host = 0.0.0.0/bind_host = 0.0.0.0/g' /etc/keystone/keystone.conf    
sed -i 's/# public_port = 5000/public_port = 5000/g' /etc/keystone/keystone.conf    
sed -i 's/# admin_port = 35357/admin_port = 35357/g' /etc/keystone/keystone.conf    
sed -i 's/# compute_port = 8774/compute_port = 8774/g' /etc/keystone/keystone.conf    
sed -i 's/# verbose = False/verbose = True/g' /etc/keystone/keystone.conf    
sed -i 's/# debug = False/debug = True/g' /etc/keystone/keystone.conf    
sed -i 's/# log_file = keystone.log/log_file = keystone.log/g' /etc/keystone/keystone.conf    
sed -i 's/# log_dir = \/var\/log\/keystone/log_dir = \/var\/log\/keystone/g' /etc/keystone/keystone.conf    
sed -i 's/# use_syslog = False/use_syslog = False/g' /etc/keystone/keystone.conf    
sed -i 's/# connection = sqlite:\/\/\/keystone.db/connection = mysql:\/\/keystone:keystone@localhost\/keystone/g' /etc/keystone/keystone.conf    
sed -i 's/# driver = keystone.identity.backends.sql.Identity/driver = keystone.identity.backends.sql.Identity/g' /etc/keystone/keystone.conf    
sed -i 's/# driver = keystone.catalog.backends.templated.TemplatedCatalog/driver = keystone.catalog.backends.templated.TemplatedCatalog/g' /etc/keystone/keystone.conf    
sed -i 's/# template_file = default_catalog.templates/template_file = \/etc\/keystone\/default_catalog.templates/g' /etc/keystone/keystone.conf    
sed -i 's/# driver = keystone.token.backends.kvs.Token/driver = keystone.token.backends.kvs.Token/g' /etc/keystone/keystone.conf    
sed -i 's/# expiration = 86400/expiration = 86400/g' /etc/keystone/keystone.conf    
sed -i 's/# driver = keystone.policy.backends.rules.Policy/driver = keystone.policy.backends.rules.Policy/g' /etc/keystone/keystone.conf    
sed -i 's/# driver = keystone.contrib.ec2.backends.kvs.Ec2/driver = keystone.contrib.ec2.backends.kvs.Ec2/g' /etc/keystone/keystone.conf    

 

 

 

 

4.6 配置Keystone日誌備份機制

 

wget http://www.xiaoyinzei.com/files/openstack/folsom/keystone/logrotate/openstack-keystone.logrotate -O /etc/logrotate.d/openstack-keystone

4.7 創建Keystone服務管理腳本

wget http://www.xiaoyinzei.com/files/openstack/folsom/keystone/init/openstack-keystone.init -O /etc/rc.d/init.d/openstack-keystone

4.8 設置相關目錄及文件權限

chown -R keystone:keystone /var/log/keystone    
chown -R keystone:keystone /var/lib/keystone    
chown -R keystone:keystone /var/run/keystone    
chmod 755 /etc/rc.d/init.d/openstack-keystone

 

4.9 初始化keystone數據庫表結構

 

keystone-manage db_sync

 

4.10 啓動keystone服務

 

/etc/init.d/openstack-keystone start

4.11 初始化keystone數據

bash /etc/keystone/keystone_data.sh

4.12 設置Keystone服務爲系統服務並使服務開機自啓

 

chkconfig --add openstack-keystone    
chkconfig --level 3 openstack-keystone on