原文名称: OpenStack Juno Scripted Installation on CentOS 7

Step I:  本机信息配置

CONTROLLER_IP=192.168.173.133
ADMIN_TOKEN=ADMIN123
SERVICE_PWD=Service123
ADMIN_PWD=password

#this host IP info
THISHOST_NAME=juno-controller
THISHOST_IP=192.168.173.133
THISHOST_NETMASK=255.255.255.0
THISHOST_GATEWAY=192.168.173.2
THISHOST_DNS=192.168.173.2

+++++++++++++++++++++++++++++++我是分割线+++++++++++++++++++++++++++++

另存文件为: config

Step III:  本机IP 设定

#!/bin/bash

#get config info

source config

#enumerate NICs

for i in $(ls /sys/class/net); do

    NIC=$i

    MY_MAC=$(cat /sys/class/net/$i/address)

    if [ "$(cat /sys/class/net/$i/ifindex)" == '2' ]; then

        #setup the IP configuration for 1st NIC

        sed -i.bak "s/dhcp/none/g" /etc/sysconfig/network-scripts/ifcfg-$NIC

        sed -i "s/HWADDR/#HWADDR/g" /etc/sysconfig/network-scripts/ifcfg-$NIC

        sed -i "/#HWADDR/a HWADDR=\"$MY_MAC\"" /etc/sysconfig/network-scripts/ifcfg-$NIC

        sed -i "s/UUID/#UUID/g" /etc/sysconfig/network-scripts/ifcfg-$NIC

        echo "IPADDR=\"$THISHOST_IP\"" >> /etc/sysconfig/network-scripts/ifcfg-$NIC

        echo "NETMASK=\"$THISHOST_NETMASK\"" >> /etc/sysconfig/network-scripts/ifcfg-$NIC

        echo "GATEWAY=\"$THISHOST_GATEWAY\"" >> /etc/sysconfig/network-scripts/ifcfg-$NIC

        echo "DNS1=\"$THISHOST_DNS\"" >> /etc/sysconfig/network-scripts/ifcfg-$NIC

        mv /etc/sysconfig/network-scripts/ifcfg-$NIC.bak .

    fi

    if [ "$(cat /sys/class/net/$i/ifindex)" == '3' ]; then

        #create config file for 2nd NIC

        echo "HWADDR=\"$MY_MAC\"" > /etc/sysconfig/network-scripts/ifcfg-$NIC

        echo "TYPE=\"Ethernet\"" >> /etc/sysconfig/network-scripts/ifcfg-$NIC

        echo "BOOTPROTO=\"none\"" >> /etc/sysconfig/network-scripts/ifcfg-$NIC

        echo "IPV4_FAILURE_FATAL=\"no\"" >> /etc/sysconfig/network-scripts/ifcfg-$NIC

        echo "NAME=\"$NIC\"" >> /etc/sysconfig/network-scripts/ifcfg-$NIC

        echo "ONBOOT=\"yes\"" >> /etc/sysconfig/network-scripts/ifcfg-$NIC

    fi

done

#setup hostname

echo "$THISHOST_NAME" > /etc/hostname

echo "$THISHOST_IP    $THISHOST_NAME" >> /etc/hosts

reboot
+++++++++++++++++++++++++++++++我是分割线+++++++++++++++++++++++++++++
sudo ./ipconfig.sh

Step III:  安装配置 OpenStack controller services

#!/bin/bash

#get the configuration info

source config

#install ntp

yum -y install ntp

systemctl enable ntpd.service

systemctl start ntpd.service

#openstack repos

yum -y install yum-plugin-priorities

yum -y install epel-release

yum -y install http://rdo.fedorapeople.org/openstack-juno/rdo-release-juno.rpm

yum -y upgrade

#yum -y install openstack-selinux

#loosen things up

systemctl stop firewalld.service

systemctl disable firewalld.service

sed -i 's/enforcing/disabled/g' /etc/selinux/config

echo 0 > /sys/fs/selinux/enforce

#install database server

yum -y install mariadb mariadb-server MySQL-python

#edit /etc/my.cnf

sed -i.bak "10i\\

bind-address = $CONTROLLER_IP\n\

default-storage-engine = innodb\n\

innodb_file_per_table\n\

collation-server = utf8_general_ci\n\

init-connect = 'SET NAMES utf8'\n\

character-set-server = utf8\n\

" /etc/my.cnf

#start database server

systemctl enable mariadb.service

systemctl start mariadb.service

echo 'now run through the mysql_secure_installation'

mysql_secure_installation

#create databases

echo 'Enter the new MySQL root password'

mysql -u root -p <<EOF

CREATE DATABASE nova;

CREATE DATABASE cinder;

CREATE DATABASE glance;

CREATE DATABASE keystone;

GRANT ALL PRIVILEGES ON nova.* TO 'nova'@'localhost' IDENTIFIED BY '$SERVICE_PWD';

GRANT ALL PRIVILEGES ON cinder.* TO 'cinder'@'localhost' IDENTIFIED BY '$SERVICE_PWD';

GRANT ALL PRIVILEGES ON glance.* TO 'glance'@'localhost' IDENTIFIED BY '$SERVICE_PWD';

GRANT ALL PRIVILEGES ON keystone.* TO 'keystone'@'localhost' IDENTIFIED BY '$SERVICE_PWD';

GRANT ALL PRIVILEGES ON nova.* TO 'nova'@'%' IDENTIFIED BY '$SERVICE_PWD';

GRANT ALL PRIVILEGES ON cinder.* TO 'cinder'@'%' IDENTIFIED BY '$SERVICE_PWD';

GRANT ALL PRIVILEGES ON glance.* TO 'glance'@'%' IDENTIFIED BY '$SERVICE_PWD';

GRANT ALL PRIVILEGES ON keystone.* TO 'keystone'@'%' IDENTIFIED BY '$SERVICE_PWD';

FLUSH PRIVILEGES;

EOF

#install messaging service

yum -y install rabbitmq-server

systemctl enable rabbitmq-server.service

systemctl start rabbitmq-server.service

#install keystone

yum -y install openstack-keystone python-keystoneclient

#edit /etc/keystone.conf

sed -i.bak "s/#admin_token=ADMIN/admin_token=$ADMIN_TOKEN/g" /etc/keystone/keystone.conf

sed -i "/\[database\]/a \

connection = mysql://keystone:$SERVICE_PWD@$CONTROLLER_IP/keystone" /etc/keystone/keystone.conf

sed -i "/\[token\]/a \

provider = keystone.token.providers.uuid.Provider\n\

driver = keystone.token.persistence.backends.sql.Token\n" /etc/keystone/keystone.conf

#finish keystone setup

keystone-manage pki_setup --keystone-user keystone --keystone-group keystone

chown -R keystone:keystone /var/log/keystone

chown -R keystone:keystone /etc/keystone/ssl

chmod -R o-rwx /etc/keystone/ssl

su -s /bin/sh -c "keystone-manage db_sync" keystone

#start keystone

systemctl enable openstack-keystone.service

systemctl start openstack-keystone.service

#schedule token purge

(crontab -l -u keystone 2>&1 | grep -q token_flush) || \

  echo '@hourly /usr/bin/keystone-manage token_flush >/var/log/keystone/keystone-tokenflush.log 2>&1' \

  >> /var/spool/cron/keystone

#create users and tenants

export OS_SERVICE_TOKEN=$ADMIN_TOKEN

export OS_SERVICE_ENDPOINT=http://$CONTROLLER_IP:35357/v2.0

keystone tenant-create --name admin --description "Admin Tenant"

keystone user-create --name admin --pass $ADMIN_PWD

keystone role-create --name admin

keystone user-role-add --tenant admin --user admin --role admin

keystone role-create --name _member_

keystone user-role-add --tenant admin --user admin --role _member_

keystone tenant-create --name demo --description "Demo Tenant"

keystone user-create --name demo --pass password

keystone user-role-add --tenant demo --user demo --role _member_

keystone tenant-create --name service --description "Service Tenant"

keystone service-create --name keystone --type identity \

  --description "OpenStack Identity"

keystone endpoint-create \

  --service-id $(keystone service-list | awk '/ identity / {print $2}') \

  --publicurl http://$CONTROLLER_IP:5000/v2.0 \

  --internalurl http://$CONTROLLER_IP:5000/v2.0 \

  --adminurl http://$CONTROLLER_IP:35357/v2.0 \

  --region regionOne

unset OS_SERVICE_TOKEN OS_SERVICE_ENDPOINT

#create credentials file

echo "export OS_TENANT_NAME=admin" > creds

echo "export OS_USERNAME=admin" >> creds

echo "export OS_PASSWORD=$ADMIN_PWD" >> creds

echo "export OS_AUTH_URL=http://$CONTROLLER_IP:35357/v2.0" >> creds

source creds

#create keystone entries for glance

keystone user-create --name glance --pass $SERVICE_PWD

keystone user-role-add --user glance --tenant service --role admin

keystone service-create --name glance --type image \

  --description "OpenStack Image Service"

keystone endpoint-create \

  --service-id $(keystone service-list | awk '/ image / {print $2}') \

  --publicurl http://$CONTROLLER_IP:9292 \

  --internalurl http://$CONTROLLER_IP:9292 \

  --adminurl http://$CONTROLLER_IP:9292 \

  --region regionOne

#install glance

yum -y install openstack-glance python-glanceclient

#edit /etc/glance/glance-api.conf

sed -i.bak "/\[database\]/a \

connection = mysql://glance:$SERVICE_PWD@$CONTROLLER_IP/glance" /etc/glance/glance-api.conf

sed -i "/\[keystone_authtoken\]/a \

auth_uri = http://$CONTROLLER_IP:5000/v2.0\n\

identity_uri = http://$CONTROLLER_IP:35357\n\

admin_tenant_name = service\n\

admin_user = glance\n\

admin_password = $SERVICE_PWD" /etc/glance/glance-api.conf

sed -i "/\[paste_deploy\]/a \

flavor = keystone" /etc/glance/glance-api.conf

sed -i "/\[glance_store\]/a \

default_store = file\n\

filesystem_store_datadir = /var/lib/glance/images/" /etc/glance/glance-api.conf

#edit /etc/glance/glance-registry.conf

sed -i.bak "/\[database\]/a \

connection = mysql://glance:$SERVICE_PWD@$CONTROLLER_IP/glance" /etc/glance/glance-registry.conf

sed -i "/\[keystone_authtoken\]/a \

auth_uri = http://$CONTROLLER_IP:5000/v2.0\n\

identity_uri = http://$CONTROLLER_IP:35357\n\

admin_tenant_name = service\n\

admin_user = glance\n\

admin_password = $SERVICE_PWD" /etc/glance/glance-registry.conf

sed -i "/\[paste_deploy\]/a \

flavor = keystone" /etc/glance/glance-registry.conf

#start glance

su -s /bin/sh -c "glance-manage db_sync" glance

systemctl enable openstack-glance-api.service openstack-glance-registry.service

systemctl start openstack-glance-api.service openstack-glance-registry.service

#upload the cirros image to glance

yum -y install wget

wget http://cdn.download.cirros-cloud.net/0.3.3/cirros-0.3.3-x86_64-disk.img

glance image-create --name "cirros-0.3.3-x86_64" --file cirros-0.3.3-x86_64-disk.img \

  --disk-format qcow2 --container-format bare --is-public True --progress

#create the keystone entries for nova

keystone user-create --name nova --pass $SERVICE_PWD

keystone user-role-add --user nova --tenant service --role admin

keystone service-create --name nova --type compute \

  --description "OpenStack Compute"

keystone endpoint-create \

  --service-id $(keystone service-list | awk '/ compute / {print $2}') \

  --publicurl http://$CONTROLLER_IP:8774/v2/%\(tenant_id\)s \

  --internalurl http://$CONTROLLER_IP:8774/v2/%\(tenant_id\)s \

  --adminurl http://$CONTROLLER_IP:8774/v2/%\(tenant_id\)s \

  --region regionOne

#install the nova controller components

yum -y install openstack-nova-api openstack-nova-cert openstack-nova-conductor \

  openstack-nova-console openstack-nova-novncproxy openstack-nova-scheduler \

  python-novaclient

#edit /etc/nova/nova.conf

sed -i.bak "/\[database\]/a \

connection = mysql://nova:$SERVICE_PWD@$CONTROLLER_IP/nova" /etc/nova/nova.conf

sed -i "/\[DEFAULT\]/a \

rpc_backend = rabbit\n\

rabbit_host = $CONTROLLER_IP\n\

auth_strategy = keystone\n\

my_ip = $CONTROLLER_IP\n\

vncserver_listen = $CONTROLLER_IP\n\

vncserver_proxyclient_address = $CONTROLLER_IP\n\

network_api_class = nova.network.api.API\n\

security_group_api = nova" /etc/nova/nova.conf

sed -i "/\[keystone_authtoken\]/i \

[database]\nconnection = mysql://nova:Service123@$CONTROLLER_IP/nova" /etc/nova/nova.conf

sed -i "/\[keystone_authtoken\]/a \

auth_uri = http://$CONTROLLER_IP:5000/v2.0\n\

identity_uri = http://$CONTROLLER_IP:35357\n\

admin_tenant_name = service\n\

admin_user = nova\n\

admin_password = $SERVICE_PWD" /etc/nova/nova.conf

sed -i "/\[glance\]/a host = $CONTROLLER_IP" /etc/nova/nova.conf

#start nova

su -s /bin/sh -c "nova-manage db sync" nova

systemctl enable openstack-nova-api.service openstack-nova-cert.service \

  openstack-nova-consoleauth.service openstack-nova-scheduler.service \

  openstack-nova-conductor.service openstack-nova-novncproxy.service

systemctl start openstack-nova-api.service openstack-nova-cert.service \

  openstack-nova-consoleauth.service openstack-nova-scheduler.service \

  openstack-nova-conductor.service openstack-nova-novncproxy.service

#install dashboard

yum -y install openstack-dashboard httpd mod_wsgi memcached python-memcached

#edit /etc/openstack-dashboard/local_settings

sed -i.bak "s/ALLOWED_HOSTS = \['horizon.example.com', 'localhost'\]/ALLOWED_HOSTS = ['*']/" /etc/openstack-dashboard/local_settings

sed -i 's/OPENSTACK_HOST = "127.0.0.1"/OPENSTACK_HOST = "'"$CONTROLLER_IP"'"/' /etc/openstack-dashboard/local_settings

#start dashboard

setsebool -P httpd_can_network_connect on

chown -R apache:apache /usr/share/openstack-dashboard/static

systemctl enable httpd.service memcached.service

systemctl start httpd.service memcached.service

#create keystone entries for cinder

keystone user-create --name cinder --pass $SERVICE_PWD

keystone user-role-add --user cinder --tenant service --role admin

keystone service-create --name cinder --type volume \

  --description "OpenStack Block Storage"

keystone service-create --name cinderv2 --type volumev2 \

  --description "OpenStack Block Storage"

keystone endpoint-create \

  --service-id $(keystone service-list | awk '/ volume / {print $2}') \

  --publicurl http://$CONTROLLER_IP:8776/v1/%\(tenant_id\)s \

  --internalurl http://$CONTROLLER_IP:8776/v1/%\(tenant_id\)s \

  --adminurl http://$CONTROLLER_IP:8776/v1/%\(tenant_id\)s \

  --region regionOne

keystone endpoint-create \

  --service-id $(keystone service-list | awk '/ volumev2 / {print $2}') \

  --publicurl http://$CONTROLLER_IP:8776/v2/%\(tenant_id\)s \

  --internalurl http://$CONTROLLER_IP:8776/v2/%\(tenant_id\)s \

  --adminurl http://$CONTROLLER_IP:8776/v2/%\(tenant_id\)s \

  --region regionOne

#install cinder controller

yum -y install openstack-cinder python-cinderclient python-oslo-db

#edit /etc/cinder/cinder.conf

sed -i.bak "/\[database\]/a connection = mysql://cinder:$SERVICE_PWD@$CONTROLLER_IP/cinder" /etc/cinder/cinder.conf

sed -i "/\[DEFAULT\]/a \

rpc_backend = rabbit\n\

rabbit_host = $CONTROLLER_IP\n\

auth_strategy = keystone\n\

my_ip = $CONTROLLER_IP" /etc/cinder/cinder.conf

sed -i "/\[keystone_authtoken\]/a \

auth_uri = http://$CONTROLLER_IP:5000/v2.0\n\

identity_uri = http://$CONTROLLER_IP:35357\n\

admin_tenant_name = service\n\

admin_user = cinder\n\

admin_password = $SERVICE_PWD" /etc/cinder/cinder.conf

#start cinder controller

su -s /bin/sh -c "cinder-manage db sync" cinder

systemctl enable openstack-cinder-api.service openstack-cinder-scheduler.service

systemctl start openstack-cinder-api.service openstack-cinder-scheduler.service

+++++++++++++++++++++++++++++++我是分割线+++++++++++++++++++++++++++++
sudo ./controller-node.sh

应该安装好。

一键安装openstack juno 之controller node.的更多相关文章

  1. 使用openshit在ubuntu14.04下一键部署openstack(juno版本)

    一.基本介绍 本实验是在vmware workstation上虚拟机ubuntu14.04(64bit,desktop)上部署openstack(Juno版本).采用的工具是openshit.open ...

  2. Linux(CentOS、Ububtu)一键安装Openstack及其它参考文档汇总

    原文链接  http://www.aboutyun.com/thread-10920-1-1.html openstack相关资料 CentOS下一键安装Openstack  http://blog. ...

  3. CentOS下一键安装Openstack

    CentOS下一键安装Openstack 系统环境:Oracle VirtualBox 4.38CentOS-6.5-x86_64-bin-DVD1.iso 安装前需要修改 /etc/hosts文件, ...

  4. [openStack]使用Fuel安装OpenStack juno的fuel_master

    安装OpenStack是一件很复杂的事情,特别是在想目中,如果一个组件一个组件,一台一台的coding部署,估计太消耗时间,而且出错的概率很高,所以使用工具推送部署的效率就很高了,而且必须得可靠.mi ...

  5. kolla-ansible 一键安装openstack

    官网地址https://docs.openstack.org/kolla-ansible/latest/user/quickstart.html 参考:https://www.jianshu.com/ ...

  6. RHEL7.1 安装openstack juno 一个BUG

    错误提示: -- :: ERROR nova.compute.manager [-] [instance: 887e5e40-ebd8--b2f7-afa2a37bdef8] Instance fai ...

  7. ubuntu16.0 安装 openstack

    主要参考官方文档:https://docs.openstack.org/liberty/zh_CN/install-guide-ubuntu/environment-nosql-database.ht ...

  8. 10分钟安装OpenStack

    1 OpenStack初学者的苦恼 2 OpenStack最低配置要求 3 配置UOS环境 3.1 设置网络 3.1.1 创建路由器 3.1.2 创建网络 3.1.3 创建两个子网 3.2 创建UOS ...

  9. Openstack组件部署 — Networking service_安装并配置Controller Node

    目录 目录 前文列表 前提条件 网络环境 完成下面的步骤以创建数据库 创建service credentials服务凭证 创建Neutron的API Endpoints 配置自服务网络 安装网络组件 ...

随机推荐

  1. underscore.js定义模板遇到问题:Uncaught TypeError: Cannot read property 'replace' of undefined

    代码正确缩进位置如下, extend "layout" block 'content',-> div ->'nihao' script id:"Invoice ...

  2. systemctl命令完全指南

    Systemctl是一个systemd工具,主要负责控制systemd系统和服务管理器. Systemd是一个系统管理守护进程.工具和库的集合,用于取代System V初始进程.Systemd的功能是 ...

  3. 【安全开发】PHP安全编码规范

    申明:本文非笔者原创,原文转载自:https://github.com/SecurityPaper/SecurityPaper-web/blob/master/_posts/2.SDL%E8%A7%8 ...

  4. 国内CDN加速现状

    什么是CDN CDN的全称是Content Delivery Network,即内容分发网络.是位于网络层与应用层之间的网络应用,其目的是通过在现有的Internet中增加一层新的网络架构,将网站的内 ...

  5. C语言结构体和指针

    指针也可以指向一个结构体,定义的形式一般为: struct 结构体名 *变量名; 下面是一个定义结构体指针的实例: struct stu{ char *name; //姓名 int num; //学号 ...

  6. 使用css制作倒影

    -webkit-mask 这个属性是相当强大的,所以详细的介绍超出了本文的范畴,它非常值得深入研究,因为它可以在实际应用中为你省掉很多时间. -webkit-mask让为一个元素添加蒙板成为可能,从而 ...

  7. Android使用Handler造成内存泄露的分析及解决方法

    一.什么是内存泄露? Java使用有向图机制,通过GC自动检查内存中的对象(什么时候检查由虚拟机决定),如果GC发现一个或一组对象为不可到达状态,则将该对象从内存中回收.也就是说,一个对象不被任何引用 ...

  8. Android学习之Handler消息

    Android系统规定,一些耗时的操作不能放在UI线程中去执行,这样会报一个ANR错误.所以为了避免该问题,我们需要开启一个新的线程去执行一些耗时操作:开启新的线程,将耗时的操作在新线程里面去执行, ...

  9. SQL SERVER 2008 R2安全配置与防暴力破解

    https://blog.csdn.net/enweitech/article/details/49864215 0x00 sql server 2008 权限介绍 在访问sql server 200 ...

  10. 高性能Android应用开发