一键安装openstack juno 之controller node.

原文名称： OpenStack Juno Scripted Installation on CentOS 7

Step I:  本机信息配置

CONTROLLER_IP=192.168.173.133
ADMIN_TOKEN=ADMIN123
SERVICE_PWD=Service123
ADMIN_PWD=password

#this host IP info
THISHOST_NAME=juno-controller
THISHOST_IP=192.168.173.133
THISHOST_NETMASK=255.255.255.0
THISHOST_GATEWAY=192.168.173.2
THISHOST_DNS=192.168.173.2

+++++++++++++++++++++++++++++++我是分割线+++++++++++++++++++++++++++++

另存文件为： config

Step III:  本机IP 设定

#!/bin/bash

#get config info
source config

#enumerate NICs
for i in $(ls /sys/class/net); do
    NIC=$i
    MY_MAC=$(cat /sys/class/net/$i/address)
    if [ "$(cat /sys/class/net/$i/ifindex)" == '2' ]; then
        #setup the IP configuration for 1st NIC
        sed -i.bak "s/dhcp/none/g" /etc/sysconfig/network-scripts/ifcfg-$NIC
        sed -i "s/HWADDR/#HWADDR/g" /etc/sysconfig/network-scripts/ifcfg-$NIC
        sed -i "/#HWADDR/a HWADDR="$MY_MAC"" /etc/sysconfig/network-scripts/ifcfg-$NIC
        sed -i "s/UUID/#UUID/g" /etc/sysconfig/network-scripts/ifcfg-$NIC
        echo "IPADDR="$THISHOST_IP"" >> /etc/sysconfig/network-scripts/ifcfg-$NIC
        echo "NETMASK="$THISHOST_NETMASK"" >> /etc/sysconfig/network-scripts/ifcfg-$NIC
        echo "GATEWAY="$THISHOST_GATEWAY"" >> /etc/sysconfig/network-scripts/ifcfg-$NIC
        echo "DNS1="$THISHOST_DNS"" >> /etc/sysconfig/network-scripts/ifcfg-$NIC
        mv /etc/sysconfig/network-scripts/ifcfg-$NIC.bak .
    fi
    if [ "$(cat /sys/class/net/$i/ifindex)" == '3' ]; then
        #create config file for 2nd NIC
        echo "HWADDR="$MY_MAC"" > /etc/sysconfig/network-scripts/ifcfg-$NIC
        echo "TYPE="Ethernet"" >> /etc/sysconfig/network-scripts/ifcfg-$NIC
        echo "BOOTPROTO="none"" >> /etc/sysconfig/network-scripts/ifcfg-$NIC
        echo "IPV4_FAILURE_FATAL="no"" >> /etc/sysconfig/network-scripts/ifcfg-$NIC
        echo "NAME="$NIC"" >> /etc/sysconfig/network-scripts/ifcfg-$NIC
        echo "ONBOOT="yes"" >> /etc/sysconfig/network-scripts/ifcfg-$NIC
    fi        
done

#setup hostname
echo "$THISHOST_NAME" > /etc/hostname
echo "$THISHOST_IP    $THISHOST_NAME" >> /etc/hosts

reboot

+++++++++++++++++++++++++++++++我是分割线+++++++++++++++++++++++++++++
sudo ./ipconfig.sh

Step III:  安装配置 OpenStack controller services

#!/bin/bash

#get the configuration info
source config

#install ntp
yum -y install ntp
systemctl enable ntpd.service
systemctl start ntpd.service

#openstack repos
yum -y install yum-plugin-priorities
yum -y install epel-release
yum -y install http://rdo.fedorapeople.org/openstack-juno/rdo-release-juno.rpm
yum -y upgrade
#yum -y install openstack-selinux

#loosen things up
systemctl stop firewalld.service
systemctl disable firewalld.service
sed -i 's/enforcing/disabled/g' /etc/selinux/config
echo 0 > /sys/fs/selinux/enforce

#install database server
yum -y install mariadb mariadb-server MySQL-python

#edit /etc/my.cnf
sed -i.bak "10i\
bind-address = $CONTROLLER_IP

default-storage-engine = innodb

innodb_file_per_table

collation-server = utf8_general_ci

init-connect = 'SET NAMES utf8'

character-set-server = utf8

" /etc/my.cnf

#start database server
systemctl enable mariadb.service
systemctl start mariadb.service

echo 'now run through the mysql_secure_installation'
mysql_secure_installation

#create databases
echo 'Enter the new MySQL root password'
mysql -u root -p <<EOF
CREATE DATABASE nova;
CREATE DATABASE cinder;
CREATE DATABASE glance;
CREATE DATABASE keystone;
GRANT ALL PRIVILEGES ON nova.* TO 'nova'@'localhost' IDENTIFIED BY '$SERVICE_PWD';
GRANT ALL PRIVILEGES ON cinder.* TO 'cinder'@'localhost' IDENTIFIED BY '$SERVICE_PWD';
GRANT ALL PRIVILEGES ON glance.* TO 'glance'@'localhost' IDENTIFIED BY '$SERVICE_PWD';
GRANT ALL PRIVILEGES ON keystone.* TO 'keystone'@'localhost' IDENTIFIED BY '$SERVICE_PWD';
GRANT ALL PRIVILEGES ON nova.* TO 'nova'@'%' IDENTIFIED BY '$SERVICE_PWD';
GRANT ALL PRIVILEGES ON cinder.* TO 'cinder'@'%' IDENTIFIED BY '$SERVICE_PWD';
GRANT ALL PRIVILEGES ON glance.* TO 'glance'@'%' IDENTIFIED BY '$SERVICE_PWD';
GRANT ALL PRIVILEGES ON keystone.* TO 'keystone'@'%' IDENTIFIED BY '$SERVICE_PWD';
FLUSH PRIVILEGES;
EOF

#install messaging service
yum -y install rabbitmq-server
systemctl enable rabbitmq-server.service
systemctl start rabbitmq-server.service

#install keystone
yum -y install openstack-keystone python-keystoneclient

#edit /etc/keystone.conf
sed -i.bak "s/#admin_token=ADMIN/admin_token=$ADMIN_TOKEN/g" /etc/keystone/keystone.conf

sed -i "/[database]/a 
connection = mysql://keystone:$SERVICE_PWD@$CONTROLLER_IP/keystone" /etc/keystone/keystone.conf

sed -i "/[token]/a 
provider = keystone.token.providers.uuid.Provider

driver = keystone.token.persistence.backends.sql.Token
" /etc/keystone/keystone.conf

#finish keystone setup
keystone-manage pki_setup --keystone-user keystone --keystone-group keystone
chown -R keystone:keystone /var/log/keystone
chown -R keystone:keystone /etc/keystone/ssl
chmod -R o-rwx /etc/keystone/ssl
su -s /bin/sh -c "keystone-manage db_sync" keystone

#start keystone
systemctl enable openstack-keystone.service
systemctl start openstack-keystone.service

#schedule token purge
(crontab -l -u keystone 2>&1 | grep -q token_flush) || 
  echo '@hourly /usr/bin/keystone-manage token_flush >/var/log/keystone/keystone-tokenflush.log 2>&1' 
  >> /var/spool/cron/keystone
  
#create users and tenants
export OS_SERVICE_TOKEN=$ADMIN_TOKEN
export OS_SERVICE_ENDPOINT=http://$CONTROLLER_IP:35357/v2.0
keystone tenant-create --name admin --description "Admin Tenant"
keystone user-create --name admin --pass $ADMIN_PWD
keystone role-create --name admin
keystone user-role-add --tenant admin --user admin --role admin
keystone role-create --name _member_
keystone user-role-add --tenant admin --user admin --role _member_
keystone tenant-create --name demo --description "Demo Tenant"
keystone user-create --name demo --pass password
keystone user-role-add --tenant demo --user demo --role _member_
keystone tenant-create --name service --description "Service Tenant"
keystone service-create --name keystone --type identity 
  --description "OpenStack Identity"
keystone endpoint-create 
  --service-id $(keystone service-list | awk '/ identity / {print $2}') 
  --publicurl http://$CONTROLLER_IP:5000/v2.0 
  --internalurl http://$CONTROLLER_IP:5000/v2.0 
  --adminurl http://$CONTROLLER_IP:35357/v2.0 
  --region regionOne
unset OS_SERVICE_TOKEN OS_SERVICE_ENDPOINT

#create credentials file
echo "export OS_TENANT_NAME=admin" > creds
echo "export OS_USERNAME=admin" >> creds
echo "export OS_PASSWORD=$ADMIN_PWD" >> creds
echo "export OS_AUTH_URL=http://$CONTROLLER_IP:35357/v2.0" >> creds
source creds

#create keystone entries for glance
keystone user-create --name glance --pass $SERVICE_PWD
keystone user-role-add --user glance --tenant service --role admin
keystone service-create --name glance --type image 
  --description "OpenStack Image Service"
keystone endpoint-create 
  --service-id $(keystone service-list | awk '/ image / {print $2}') 
  --publicurl http://$CONTROLLER_IP:9292 
  --internalurl http://$CONTROLLER_IP:9292 
  --adminurl http://$CONTROLLER_IP:9292 
  --region regionOne

#install glance
yum -y install openstack-glance python-glanceclient

#edit /etc/glance/glance-api.conf
sed -i.bak "/[database]/a 
connection = mysql://glance:$SERVICE_PWD@$CONTROLLER_IP/glance" /etc/glance/glance-api.conf

sed -i "/[keystone_authtoken]/a 
auth_uri = http://$CONTROLLER_IP:5000/v2.0

identity_uri = http://$CONTROLLER_IP:35357

admin_tenant_name = service

admin_user = glance

admin_password = $SERVICE_PWD" /etc/glance/glance-api.conf

sed -i "/[paste_deploy]/a 
flavor = keystone" /etc/glance/glance-api.conf

sed -i "/[glance_store]/a 
default_store = file

filesystem_store_datadir = /var/lib/glance/images/" /etc/glance/glance-api.conf

#edit /etc/glance/glance-registry.conf
sed -i.bak "/[database]/a 
connection = mysql://glance:$SERVICE_PWD@$CONTROLLER_IP/glance" /etc/glance/glance-registry.conf

sed -i "/[keystone_authtoken]/a 
auth_uri = http://$CONTROLLER_IP:5000/v2.0

identity_uri = http://$CONTROLLER_IP:35357

admin_tenant_name = service

admin_user = glance

admin_password = $SERVICE_PWD" /etc/glance/glance-registry.conf

sed -i "/[paste_deploy]/a 
flavor = keystone" /etc/glance/glance-registry.conf

#start glance
su -s /bin/sh -c "glance-manage db_sync" glance
systemctl enable openstack-glance-api.service openstack-glance-registry.service
systemctl start openstack-glance-api.service openstack-glance-registry.service

#upload the cirros image to glance
yum -y install wget
wget http://cdn.download.cirros-cloud.net/0.3.3/cirros-0.3.3-x86_64-disk.img
glance image-create --name "cirros-0.3.3-x86_64" --file cirros-0.3.3-x86_64-disk.img 
  --disk-format qcow2 --container-format bare --is-public True --progress
  
#create the keystone entries for nova
keystone user-create --name nova --pass $SERVICE_PWD
keystone user-role-add --user nova --tenant service --role admin
keystone service-create --name nova --type compute 
  --description "OpenStack Compute"
keystone endpoint-create 
  --service-id $(keystone service-list | awk '/ compute / {print $2}') 
  --publicurl http://$CONTROLLER_IP:8774/v2/%(tenant_id)s 
  --internalurl http://$CONTROLLER_IP:8774/v2/%(tenant_id)s 
  --adminurl http://$CONTROLLER_IP:8774/v2/%(tenant_id)s 
  --region regionOne

#install the nova controller components
yum -y install openstack-nova-api openstack-nova-cert openstack-nova-conductor 
  openstack-nova-console openstack-nova-novncproxy openstack-nova-scheduler 
  python-novaclient

#edit /etc/nova/nova.conf
sed -i.bak "/[database]/a 
connection = mysql://nova:$SERVICE_PWD@$CONTROLLER_IP/nova" /etc/nova/nova.conf

sed -i "/[DEFAULT]/a 
rpc_backend = rabbit

rabbit_host = $CONTROLLER_IP

auth_strategy = keystone

my_ip = $CONTROLLER_IP

vncserver_listen = $CONTROLLER_IP

vncserver_proxyclient_address = $CONTROLLER_IP

network_api_class = nova.network.api.API

security_group_api = nova" /etc/nova/nova.conf

sed -i "/[keystone_authtoken]/i 
[database]
connection = mysql://nova:Service123@$CONTROLLER_IP/nova" /etc/nova/nova.conf

sed -i "/[keystone_authtoken]/a 
auth_uri = http://$CONTROLLER_IP:5000/v2.0

identity_uri = http://$CONTROLLER_IP:35357

admin_tenant_name = service

admin_user = nova

admin_password = $SERVICE_PWD" /etc/nova/nova.conf

sed -i "/[glance]/a host = $CONTROLLER_IP" /etc/nova/nova.conf

#start nova
su -s /bin/sh -c "nova-manage db sync" nova

systemctl enable openstack-nova-api.service openstack-nova-cert.service 
  openstack-nova-consoleauth.service openstack-nova-scheduler.service 
  openstack-nova-conductor.service openstack-nova-novncproxy.service
systemctl start openstack-nova-api.service openstack-nova-cert.service 
  openstack-nova-consoleauth.service openstack-nova-scheduler.service 
  openstack-nova-conductor.service openstack-nova-novncproxy.service

#install dashboard
yum -y install openstack-dashboard httpd mod_wsgi memcached python-memcached

#edit /etc/openstack-dashboard/local_settings
sed -i.bak "s/ALLOWED_HOSTS = ['horizon.example.com', 'localhost']/ALLOWED_HOSTS = ['*']/" /etc/openstack-dashboard/local_settings
sed -i 's/OPENSTACK_HOST = "127.0.0.1"/OPENSTACK_HOST = "'"$CONTROLLER_IP"'"/' /etc/openstack-dashboard/local_settings

#start dashboard
setsebool -P httpd_can_network_connect on
chown -R apache:apache /usr/share/openstack-dashboard/static
systemctl enable httpd.service memcached.service
systemctl start httpd.service memcached.service

#create keystone entries for cinder
keystone user-create --name cinder --pass $SERVICE_PWD
keystone user-role-add --user cinder --tenant service --role admin
keystone service-create --name cinder --type volume 
  --description "OpenStack Block Storage"
keystone service-create --name cinderv2 --type volumev2 
  --description "OpenStack Block Storage"
keystone endpoint-create 
  --service-id $(keystone service-list | awk '/ volume / {print $2}') 
  --publicurl http://$CONTROLLER_IP:8776/v1/%(tenant_id)s 
  --internalurl http://$CONTROLLER_IP:8776/v1/%(tenant_id)s 
  --adminurl http://$CONTROLLER_IP:8776/v1/%(tenant_id)s 
  --region regionOne
keystone endpoint-create 
  --service-id $(keystone service-list | awk '/ volumev2 / {print $2}') 
  --publicurl http://$CONTROLLER_IP:8776/v2/%(tenant_id)s 
  --internalurl http://$CONTROLLER_IP:8776/v2/%(tenant_id)s 
  --adminurl http://$CONTROLLER_IP:8776/v2/%(tenant_id)s 
  --region regionOne

#install cinder controller
yum -y install openstack-cinder python-cinderclient python-oslo-db

#edit /etc/cinder/cinder.conf
sed -i.bak "/[database]/a connection = mysql://cinder:$SERVICE_PWD@$CONTROLLER_IP/cinder" /etc/cinder/cinder.conf

sed -i "/[DEFAULT]/a 
rpc_backend = rabbit

rabbit_host = $CONTROLLER_IP

auth_strategy = keystone

my_ip = $CONTROLLER_IP" /etc/cinder/cinder.conf

sed -i "/[keystone_authtoken]/a 
auth_uri = http://$CONTROLLER_IP:5000/v2.0

identity_uri = http://$CONTROLLER_IP:35357

admin_tenant_name = service

admin_user = cinder

admin_password = $SERVICE_PWD" /etc/cinder/cinder.conf

#start cinder controller
su -s /bin/sh -c "cinder-manage db sync" cinder
systemctl enable openstack-cinder-api.service openstack-cinder-scheduler.service
systemctl start openstack-cinder-api.service openstack-cinder-scheduler.service

+++++++++++++++++++++++++++++++我是分割线+++++++++++++++++++++++++++++

sudo ./controller-node.sh

应该安装好。