一.keystone安装
参考文档:http://www.aboutyun.com/thread-13080-1-1.html
http://docs.openstack.org/mitaka/install-guide-ubuntu/keystone-install.html
1.创建keystone数据库并授权
mysql -u root -p
- 创建keystone数据库:
CREATE DATABASE keystone;
- 授权(并设置keystone密码,此密码在后面同步数据库时会用到,我的是keystone):
GRANT ALL PRIVILEGES ON keystone.* TO 'keystone'@'localhost' IDENTIFIED BY 'KEYSTONE_PASS';
GRANT ALL PRIVILEGES ON keystone.* TO 'keystone'@'%' IDENTIFIED BY 'KEYSTONE_PASS';
- 退出:
exit;
2.安装keystone
- 生成一个随机token串(后面会用到,例:570f15acb897e7v3e58f):
openssl rand -hex 10
- 默认keystone服务监听端口5000 和 35357,尽管如此向导配置 Apache HTTP server 监听这些端口,为了避免端口冲突,安装后禁止开机启动keystone 服务(不清楚)
echo "manual" > /etc/init/keystone.override
- 安装keystone
apt-get install keystone python-openstackclient apache2 libapache2-mod-wsgi memcached python-memcache
- 修改配置文件
vim /etc/keystone/keystone.conf
[DEFAULT]
verbose = True
admin_token = ADMIN_TOKEN(换成上面的token串)
[database]
connection = mysql://keystone:KEYSTONER_PASS(keystone)@controller/keystone
一定要注释掉否则会产生404(应该是,反正会报错):connection=sqlite:////var/lib/keystone/keystone.db
[memcache]
servers = localhost:11211
[token]
...
provider = keystone.token.providers.uuid.Provider
driver = keystone.token.persistence.backends.memcache.Token
[revoke]
driver = keystone.contrib.revoke.backends.sql.Revoke
保存退出。
- 同步数据库
su -s /bin/sh