OpenStack Grizzly - Configure Keystone #12013/08/13 |
|
Install and Configure OpenStack Identity Service (Keystone).
|
|
| [1] | Install Keystone |
|
# install from EPEL OpenStack, EPEL [root@dlp ~]# yum --enablerepo=epel-openstack-grizzly,epel -y install openstack-keystone openstack-utils
|
| [2] | Configure Keystone |
|
# set database ( set any password you like for "password" section ) [root@dlp ~]# openstack-db --init --service keystone --password password Please enter the password for the 'root' MySQL user: # MySQL root password Verified connectivity to MySQL. Creating 'keystone' database. Updating 'keystone' database password in /etc/keystone/keystone.conf Initializing the keystone database, please wait... Complete!
[root@dlp ~]#
vi /etc/keystone/keystone.conf # line 4: uncomment and change admin_token = admintoken
# line 7: uncomment bind_host = 0.0.0.0 # line 10: uncomment public_port = 5000 # line 13: uncomment admin_port = 35357 # line 21: uncomment compute_port = 8774 # line 136: uncomment token_format = PKI keystone-manage pki_setup Generating RSA private key, 1024 bit long modulus ....++++++ ................................++++++ e is 65537 (0x10001) Generating RSA private key, 1024 bit long modulus ...++++++ ............++++++ e is 65537 (0x10001) Using configuration from /etc/keystone/ssl/certs/openssl.conf Check that the request matches the signature Signature ok The Subject's Distinguished Name is as follows countryName :PRINTABLE:'US' stateOrProvinceName :PRINTABLE:'Unset' localityName :PRINTABLE:'Unset' organizationName :PRINTABLE:'Unset' commonName :PRINTABLE:'www.example.com' Certificate is to be certified until Aug 12 13:38:34 2014 GMT (365 days) Write out database with 1 new entries Data Base Updated[root@dlp ~]# chown -R keystone /etc/keystone/ssl [root@dlp ~]# /etc/rc.d/init.d/openstack-keystone start Starting keystone: [ OK ] [root@dlp ~]# chkconfig openstack-keystone on |
| Sponsored Link |