Scribd
Upload
2 views2 pages

config keystone

The document outlines the steps to configure the Keystone identity service using MySQL as the database. It includes commands for creating the database, granting privileges, installing Keystone, configuring settings, and bootstrapping the identity service. Additionally, it details how to create domains, projects, users, and roles within the OpenStack environment.

Uploaded by

forgame2105
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as TXT, PDF, TXT or read online on Scribd
2 views2 pages

config keystone

The document outlines the steps to configure the Keystone identity service using MySQL as the database. It includes commands for creating the database, granting privileges, installing Keystone, configuring settings, and bootstrapping the identity service. Additionally, it details how to create domains, projects, users, and roles within the OpenStack environment.

Uploaded by

forgame2105
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as TXT, PDF, TXT or read online on Scribd
You are on page 1/ 2

config keystone

MySQL -u root -p

CREATE DATABASE keystone;


GRANT ALL PRIVILEGES ON keystone.* TO 'keystone'@'localhost' IDENTIFIED BY
'cloudify';
GRANT ALL PRIVILEGES ON keystone.* TO 'keystone'@'%' IDENTIFIED BY 'cloudify';

apt install keystone

gedit /etc/keystone/keystone.conf
[database]
connection = mysql+pymysql://keystone:cloudify@controller1/keystone
[token]
provider = fernet
su -s /bin/sh -c "keystone-manage db_sync" keystone
#Initialize Fernet key repositories
keystone-manage fernet_setup --keystone-user keystone --keystone-group keystone
keystone-manage credential_setup --keystone-user keystone --keystone-group keystone

#Bootstrap the Identity service


keystone-manage bootstrap --bootstrap-password 0000 --bootstrap-admin-url
http://controller1:5000/v3/ --bootstrap-internal-url http://controller1:5000/v3/ --
bootstrap-public-url http://controller1:5000/v3/ --bootstrap-region-id RegionOne

gedit /etc/apache2/apache2.conf
ServerName controller1
systemctl restart apache2
gedit admin-openrc
export OS_USERNAME=admin
export OS_PASSWORD=0000
export OS_PROJECT_NAME=admin
export OS_USER_DOMAIN_NAME=Default
export OS_PROJECT_DOMAIN_NAME=Default
export OS_AUTH_URL=http://controller1:5000/v3
export OS_IDENTITY_API_VERSION=3
export OS_IMAGE_API_VERSION=2

. admin-openrc

##Create a domain, projects, users, and roles


#create a new domain
openstack domain create --description "An Example Domain" example

#Create the service project


openstack project create --domain default --description "Service Project" service

#Create the myproject project


openstack project create --domain default --description "Storage Project" myproject

#Create the 'user' user


openstack user create --domain default --password-prompt user

#Create the 'userRole' role


openstack role create userRole

#Add the 'userRole' role to the myproject project and 'user' user
openstack role add --project myproject --user user userRole
#Unset the temporary OS_AUTH_URL and OS_PASSWORD environment variable:
unset OS_AUTH_URL OS_PASSWORD
openstack --os-auth-url http://controller1:5000/v3 --os-project-domain-name Default
--os-user-domain-name Default --os-project-name admin --os-username admin token
issue

openstack --os-auth-url http://controller1:5000/v3 --os-project-domain-name Default


--os-user-domain-name Default --os-project-name myproject --os-username myuser
token issue

Verification Compute :
gedit admin-openrc b nafs les configurations
. admin-openrc
openstack token issue

You might also like