9.添加新项目
(1).为操作员用户创建一个tenant:
[root@openstack ~]# keystone tenant-create --name=manager --description='Manager Tenant'
(2).创建操作员用户:
[root@openstack ~]# keystone user-create --name=manager --pass=password --email=manager@zcs.com
(3).创建一个管理角色manager:
[root@openstack ~]# keystone role-create --name=manager
(4).将manager角色添加到用户:
[root@openstack ~]# keystone user-role-add --user=manager --tenant=manager --role=manager
(5).将nova角色添加到用户:
[root@openstack ~]# keystone user-role-add --user=nova --tenant=service --role=manager
*******************************************************************************************
三、计算节点安装(Node) 1.基础配置
操作系统使用CentOS-6.5-x86_64-minimal.iso,安装过程省略,本文采用yum源安装。
(1).导入第三方安装源
[root@node ~]# rpm -Uvh
http://dl.fedoraproject.org/pub/epel/6/x86_64/epel-release-6-8.noarch.rpm [root@node ~]# rpm -Uvh
http://pkgs.repoforge.org/rpmforge-release/rpmforge-release-0.5.3-1.el6.rf.x86_64.rpm [root@node ~]# yum install
http://repos.fedorapeople.org/repos/openstack/openstack-havana/rdo-release-havana-7.noarch.rpm
(2).配置/etc/hosts文件 [root@node ~]# vi /etc/hosts
127.0.0.1 localhost localhost.localdomain localhost4 localhost4.localdomain4 ::1 localhost localhost.localdomain localhost6 localhost6.localdomain6 192.168.1.2 openstack 192.168.1.3 node
(3).配置网络
[root@node ~]# vi /etc/sysconfig/network-scripts/ifcfg-eth0 DEVICE=\
BOOTPROTO=\
HWADDR=\ ONBOOT=\
IPADDR=192.168.1.3
NETMASK=255.255.255.0 GATEWAY=192.168.1.1 TYPE=\
[root@openstack ~]# vi /etc/sysconfig/network-scripts/ifcfg-eth1 DEVICE=\
BOOTPROTO=\
HWADDR=\ ONBOOT=\ TYPE=\
(4).关闭selinux:
[root@node ~]# more /etc/selinux/config
# This file controls the state of SELinux on the system. # SELINUX= can take one of these three values:
# enforcing - SELinux security policy is enforced.
# permissive - SELinux prints warnings instead of enforcing. # disabled - SELinux is fully disabled. SELINUX=disabled
# SELINUXTYPE= type of policy in use. Possible values are: # targeted - Only targeted network daemons are protected. # strict - Full SELinux protection. SELINUXTYPE=targeted [root@node ~]# setenforce 0
(5).修改/etc/sysctl.conf参数: [root@node ~]# vi /etc/sysctl.conf
……………………
net.ipv4.ip_forward = 1
……………………
[root@node ~]#sysctl -p #使sysctl.conf配置生效
2.安装配置NTP客户端
(1).安装NTP客户端服务:
[root@node ~]# yum -y install ntpdate
(2).设置时间同步:
[root@node ~]# ntpdate192.168.1.2
31 Mar 16:17:03 ntpdate[5848]: the NTP socket is in use, exiting
(3).设置计划任务: [root@node ~]# crontab -e 插入下行内容:
*/5 * * * * ntpdate 192.168.1.2>> /var/log/ntpdate.log
3.设置环境变量
修改.bash_profile文件,添加以下参数: [root@node ~]# vi .bash_profile
………………
export OS_USERNAME=admin export OS_TENANT_NAME=admin export OS_PASSWORD=password
export OS_AUTH_URL=http://192.168.1.2:5000/v2.0
export SERVICE_ENDPOINT=http://192.168.1.2:35357/v2.0 export SERVICE_TOKEN=12dd70ede7c9d9d3ed3c ………………
执行下面的命令使变量即时生效: [root@node ~]# source .bash_profile
4.安装配置libvirt服务
(1).安装libvirt服务:
[root@node ~]# yum -y install qemu-kvm libvirt
(2)启动libvirt服务:
[root@node ~]# service libvirtd start
(3)查看net-list,发现default:
[root@node ~]# virsh net-list
Name State Autostart Persistent --------------------------------------------------
default active yes yes
(4)删除default,即virbr0:
[root@node ~]# virsh net-destroy default Network default destroyed
[root@node ~]# virsh net-undefine default Network default has been undefined
(5)重启libvirtd服务,设置开机自启动: [root@node ~]# service libvirtd restart
[root@node ~]# chkconfig libvirtd on
5.安装MySQL客户端
(1).安装mysql客户端
[root@node ~]# yum -y install mysql
(2).检查mysql数据库连通性
[root@node ~]# mysql -h 192.168.1.2 -unova -pnova Welcome to the MySQL monitor. ……………… mysql> quit; Bye
6.安装配置Nova服务
(1)安装nova-compute、nova-network、nova-scheduler [root@node ~]# yum -y install openstack-nova-compute openstack-nova-network openstack-nova-scheduler
(2).修改nova配置文件
[root@node ~]# vi /etc/nova/nova.conf [DEFAULT]
my_ip = 192.168.1.3 auth_strategy = keystone
state_path = /letv/openstack/lib/nova verbose=True
allow_resize_to_same_host = true
rpc_backend = nova.openstack.common.rpc.impl_qpid qpid_hostname = 192.168.1.2 libvirt_type = kvm
glance_api_servers = 192.168.1.2:9292
novncproxy_base_url = http://192.168.1.2:6080/vnc_auto.html vncserver_listen = 192.168.1.3
vncserver_proxyclient_address = 192.168.1.3 vnc_enabled = true vnc_keymap = en-us
network_manager = nova.network.manager.FlatDHCPManager firewall_driver = nova.virt.firewall.NoopFirewallDriver multi_host = True flat_interface = eth1 flat_network_bridge = br1 public_interface = eth0 instance_usage_audit = True instance_usage_audit_period = hour