Browse Library
Sign In Start Free Trial
Close icon Search icon
Account
Browse Library Advanced Search Sign In Start Free Trial

Add to playlist

Create a Playlist

Modal Close icon
You need to login to use this feature.
  • Book Overview & Buying OpenStack Cloud Computing Cookbook, Third Edition
  • Table Of Contents Toc
  • Feedback & Rating feedback
OpenStack Cloud Computing Cookbook, Third Edition

OpenStack Cloud Computing Cookbook, Third Edition

By : Cody Bunch
3.4 (5)
Buy this Book
close
close
OpenStack Cloud Computing Cookbook, Third Edition

OpenStack Cloud Computing Cookbook, Third Edition

3.4 (5)
By: Cody Bunch
Buy this Book

Overview of this book

OpenStack Open Source software is one of the most used cloud infrastructures to support software development and big data analysis. It is developed by a thriving community of individual developers from around the globe and backed by most of the leading players in the cloud space today. It is simple to implement, massively scalable, and can store a large pool of data and networking resources. OpenStack has a strong ecosystem that helps you provision your cloud storage needs. Add OpenStack's enterprise features to reduce the cost of your business. This book will show you the steps to build up a private cloud environment. At the beginning, you'll discover the uses of cloud services such as the identity service, image service, and compute service. You'll dive into Neutron, the OpenStack Networking service, and get your hands dirty with configuring ML2, networks, routers, and Distributed Virtual Routers. You’ll then gather more expert knowledge on OpenStack cloud computing by managing your cloud's security and migration. After that, we delve in to OpenStack Object storage and how to manage servers and work with objects, cluster, and storage functionalities. Also, as you go deeper into the realm of OpenStack, you'll learn practical examples of Block storage, LBaaS, and FWaaS: installation and configuration covered ground up. Finally, you will learn OpenStack dashboard, Ansible and Foreman, Keystone, and other interesting topics.
Table of Contents (13 chapters)
close
close
close
Preface
Icon
Preface
Icon
What this book covers
Icon
What you need for this book
Icon
Who this book is for
Icon
Conventions
Icon
Reader feedback
Icon
Customer support
Lock Free Chapter
1
1. Keystone – OpenStack Identity Service
chevron up
Icon
1. Keystone – OpenStack Identity Service
Icon
Introduction
Icon
Installing the OpenStack Identity Service
Icon
Configuring OpenStack Identity for SSL communication
Icon
Creating tenants in Keystone
Icon
Configuring roles in Keystone
Icon
Adding users to Keystone
Icon
Defining service endpoints
Icon
Creating the service tenant and service users
Icon
Configuring OpenStack Identity for LDAP Integration
2
2. Glance – OpenStack Image Service
Icon
2. Glance – OpenStack Image Service
Icon
Introduction
Icon
Installing OpenStack Image Service
Icon
Configuring OpenStack Image Service with OpenStack Identity Service
Icon
Configuring OpenStack Image Service with OpenStack Object Storage
Icon
Managing images with OpenStack Image Service
Icon
Registering a remotely stored image
Icon
Sharing images among tenants
Icon
Viewing shared images
Icon
Using image metadata
Icon
Migrating a VMware image
Icon
Creating an OpenStack image
3
3. Neutron – OpenStack Networking
Icon
3. Neutron – OpenStack Networking
Icon
Introduction
Icon
Installing Neutron and Open vSwitch on a dedicated network node
Icon
Configuring Neutron and Open vSwitch
Icon
Installing and configuring the Neutron API service
Icon
Creating a tenant Neutron network
Icon
Deleting a Neutron network
Icon
Creating an external floating IP Neutron network
Icon
Using Neutron networks for different purposes
Icon
Configuring Distributed Virtual Routers
Icon
Using Distributed Virtual Routers
4
4. Nova – OpenStack Compute
Icon
4. Nova – OpenStack Compute
Icon
Introduction
Icon
Installing OpenStack Compute controller services
Icon
Installing OpenStack Compute packages
Icon
Configuring database services
Icon
Configuring OpenStack Compute
Icon
Configuring OpenStack Compute with OpenStack Identity Service
Icon
Stopping and starting nova services
Icon
Installation of command-line tools on Ubuntu
Icon
Using the command-line tools with HTTPS
Icon
Checking OpenStack Compute services
Icon
Using OpenStack Compute
Icon
Managing security groups
Icon
Creating and managing key pairs
Icon
Launching our first cloud instance
Icon
Fixing a broken instance deployment
Icon
Terminating your instances
Icon
Using live migration
Icon
Working with nova-schedulers
Icon
Creating flavors
Icon
Defining host aggregates
Icon
Launching instances in specific Availability Zones
Icon
Launching instances on specific Compute hosts
Icon
Removing Nova nodes from a cluster
5
5. Swift – OpenStack Object Storage
Icon
5. Swift – OpenStack Object Storage
Icon
Introduction
Icon
Configuring Swift services and users in Keystone
Icon
Installing OpenStack Object Storage services – proxy server
Icon
Configuring OpenStack Object Storage – proxy server
Icon
Installing OpenStack Object Storage services – storage nodes
Icon
Configuring physical storage for use with Swift
Icon
Configuring Object Storage replication
Icon
Configuring OpenStack Object Storage – storage services
Icon
Making the Object Storage rings
Icon
Stopping and starting OpenStack Object Storage
Icon
Setting up SSL access
6
6. Using OpenStack Object Storage
Icon
6. Using OpenStack Object Storage
Icon
Introduction
Icon
Installing the swift client tool
Icon
Creating containers
Icon
Uploading objects
Icon
Uploading large objects
Icon
Listing containers and objects
Icon
Downloading objects
Icon
Deleting containers and objects
Icon
Using OpenStack Object Storage ACLs
Icon
Using Container Synchronization between two Swift Clusters
7
7. Administering OpenStack Object Storage
Icon
7. Administering OpenStack Object Storage
Icon
Introduction
Icon
Managing the OpenStack Object Storage cluster with swift-init
Icon
Checking cluster health
Icon
Managing the Swift cluster capacity
Icon
Removing nodes from a cluster
Icon
Detecting and replacing failed hard drives
Icon
Collecting usage statistics
8
8. Cinder – OpenStack Block Storage
Icon
8. Cinder – OpenStack Block Storage
Icon
Introduction
Icon
Configuring Cinder-volume services
Icon
Configuring OpenStack Compute for Cinder-volume
Icon
Creating volumes
Icon
Attaching volumes to an instance
Icon
Detaching volumes from an instance
Icon
Deleting volumes
Icon
Configuring third-party volume services
Icon
Working with Cinder snapshots
Icon
Booting from volumes
9
9. More OpenStack
Icon
9. More OpenStack
Icon
Introduction
Icon
Using cloud-init to run post-installation commands
Icon
Using cloud-config to run the post-installation configuration
Icon
Installing OpenStack Telemetry
Icon
Using OpenStack Telemetry to interrogate usage statistics
Icon
Installing Neutron LBaaS
Icon
Using Neutron LBaaS
Icon
Configuring Neutron FWaaS
Icon
Using Neutron FWaaS
Icon
Installing the Heat OpenStack Orchestration service
Icon
Using Heat to spin up instances
10
10. Using the OpenStack Dashboard
Icon
10. Using the OpenStack Dashboard
Icon
Introduction
Icon
Installing OpenStack Dashboard
Icon
Using OpenStack Dashboard for key management
Icon
Using OpenStack Dashboard to manage Neutron networks
Icon
Using OpenStack Dashboard for security group management
Icon
Using OpenStack Dashboard to launch instances
Icon
Using OpenStack Dashboard to terminate instances
Icon
Using OpenStack Dashboard to connect to instances using a VNC
Icon
Using OpenStack Dashboard to add new tenants – projects
Icon
Using OpenStack Dashboard for user management
Icon
Using OpenStack Dashboard with LBaaS
Icon
Using OpenStack Dashboard with OpenStack Orchestration
11
11. Production OpenStack
Icon
11. Production OpenStack
Icon
Introduction
Icon
Installing the MariaDB Galera cluster
Icon
Configuring HA Proxy for the MariaDB Galera cluster
Icon
Configuring HA Proxy for high availability
Icon
Installing and configuring Pacemaker with Corosync
Icon
Configuring OpenStack services with Pacemaker and Corosync
Icon
Bonding network interfaces for redundancy
Icon
Automating OpenStack installations using Ansible – host configuration
Icon
Automating OpenStack installations using Ansible – Playbook configuration
Icon
Automating OpenStack installations using Ansible – running Playbooks
12
Index
Icon
Index

Configuring roles in Keystone

Roles are the permissions given to users within a tenant. Here, we will configure two roles: an admin role that allows for the administration of our environment, and a member role that is given to ordinary users who will be using the cloud environment.

Getting ready

We will be using the keystone client to operate Keystone. If the python-keystoneclient tool isn't available, follow the steps described at http://bit.ly/OpenStackCookbookClientInstall.

Ensure that we have our environment set correctly to access our OpenStack environment for administrative purposes:

export OS_TENANT_NAME=cookbook
export OS_USERNAME=admin
export OS_PASSWORD=openstack
export OS_AUTH_URL=https://192.168.100.200:5000/v2.0/
export OS_NO_CACHE=1
export OS_KEY=/vagrant/cakey.pem
export OS_CACERT=/vagrant/ca.pem

Tip

You can use the controller node if no other machines are available on your network, as this has the python-keystoneclient and the relevant access to the OpenStack environment. If you are using the Vagrant environment, issue the following command to get access to the Controller:

vagrant ssh controller

How to do it...

To create the required roles in our OpenStack environment, perform the following steps:

  1. Create the admin role as follows:
    # admin role
keystone role-create --name admin
You will get an output like this:
+----------+----------------------------------+
| Property |              Value               |
+----------+----------------------------------+
|    id    | 625b81ae9f024366bbe023a62ab8a18d |
|   name   |              admin               |
+----------+----------------------------------+
  2. To create the Member role, we repeat the step and specify the Member role:
    # Member role
keystone role-create --name Member

How it works...

Creation of the roles is simply achieved by using the keystone client and specifying the role-create option with the following syntax:

keystone role-create --name role_name

The role_name attribute can't be arbitrary for admin and Member roles. The admin role has been set by default in /etc/keystone/policy.json as having administrative rights:

{
    "admin_required": [["role:admin"], ["is_admin:1"]]
}

The Member role is also configured by default in the OpenStack Dashboard, Horizon, for a non-admin user created through the web interface.

On creation of the role, the ID associated with is returned, and we can use it when assigning roles to users. To see a list of roles and the associated IDs in our environment, we can issue the following command:

keystone role-list
Visually different images
CONTINUE READING
83
Tech Concepts
36
Programming languages
73
Tech Tools
Icon Unlimited access to the largest independent learning library in tech of over 8,000 expert-authored tech books and videos.
Icon Innovative learning tools, including AI book assistants, code context explainers, and text-to-speech.
Icon 50+ new titles added per month and exclusive early access to books as they are being written.
OpenStack Cloud Computing Cookbook, Third Edition
End of Section 1
Next Section
notes
bookmark Notes and Bookmarks search Search in title playlist Add to playlist font-size Font size

Change the font size

margin-width Margin width

Change margin width

day-mode Day/Sepia/Night Modes

Change background colour

Close icon Search
Country selected
Close icon Your notes and bookmarks

Confirmation

Modal Close icon
claim successful
Order Page Read Now

Buy this book with your credits?

Modal Close icon
Are you sure you want to buy this book with one of your credits?
Close
YES, BUY

Submit Your Feedback

Modal Close icon
Modal Close icon
Modal Close icon