Red Hat SummitEste conteúdo não está disponível no idioma selecionado.
3.5. Create an Administrator Account and the Identity Service Endpoint
The following procedure creates an administrative user and an associated tenant and role. The Identity service endpoint is created at the same time.
All steps in this procedure must be performed on the system hosting the Identity service.
Procedure 3.8. Creating an Administrator Account and the Identity Service Endpoint
- Create an
adminuser, role, and tenant:Copy to Clipboard Copied! Toggle word wrap Toggle overflow Replace PASSWORD with the password of theadminuser, and replace IP with the IP address or host name of the Identity server. - The newly-created
adminaccount will be used for future management of the Identity service. To facilitate authentication, create akeystonerc_adminfile in a secure location such as the home directory of therootuser.Add these lines to the file to set the environment variables that will be used for authentication:export OS_USERNAME=admin export OS_TENANT_NAME=admin export OS_PASSWORD=PASSWORD export OS_AUTH_URL=http://IP:35357/v2.0/ export PS1='[\u@\h \W(keystone_admin)]\$ '
export OS_USERNAME=admin export OS_TENANT_NAME=admin export OS_PASSWORD=PASSWORD export OS_AUTH_URL=http://IP:35357/v2.0/ export PS1='[\u@\h \W(keystone_admin)]\$ 'Copy to Clipboard Copied! Toggle word wrap Toggle overflow Again, replace PASSWORD with the password of theadminuser, and replace IP with the IP address or host name of the Identity server. - Load the environment variables used for authentication:
source ~/keystonerc_admin
# source ~/keystonerc_adminCopy to Clipboard Copied! Toggle word wrap Toggle overflow
Note
Red Hat recommends creating the administrator account using the
keystone-manage bootstrap command, which obsoletes previously used administration tokens. If you still want to set up and use an administration token, see the instructions in the Create an Administrator Account section of the Installation Reference for Red Hat OpenStack Platform 8.
3.5.1. Service Regions
Copiar o linkLink copiado para a área de transferência!
Each service cataloged in the Identity service is identified by its region, which typically represents a geographical location, and its endpoint. In a Red Hat OpenStack Platform environment with multiple Compute deployments, regions allow for the discrete separation of services, and are a robust way to share some infrastructure between Compute installations, while allowing for a high degree of failure tolerance.
Administrators determine which services are shared between regions and which services are used only with a specific region. By default, when an endpoint is defined and no region is specified, it is created in the region named
RegionOne.
To begin using separate regions, specify the
--region argument when adding service endpoints:
[(keystone_admin)]# openstack endpoint create --region REGION \ --publicurl PUBLICURL \ --adminurl ADMINURL \ --internalurl INTERNALURL \ SERVICENAME
[(keystone_admin)]# openstack endpoint create --region REGION \
--publicurl PUBLICURL \
--adminurl ADMINURL \
--internalurl INTERNALURL \
SERVICENAME
Replace REGION with the name of the region to which the endpoint belongs. When sharing an endpoint between regions, create an endpoint entry containing the same URLs for each applicable region. For information on setting the URLs for each service, see the Identity service configuration information of the service in question.
Example 3.1. Endpoints Within Discrete Regions
In this example, the
APAC and EMEA regions share an Identity server (identity.example.com) endpoint, while providing region specific compute API endpoints:
'%20d='M201.5%20305.5c-13.8%200-24.9-11.1-24.9-24.6%200-13.8%2011.1-24.9%2024.9-24.9%2013.6%200%2024.6%2011.1%2024.6%2024.9%200%2013.6-11.1%2024.6-24.6%2024.6zM504%20256c0%20137-111%20248-248%20248S8%20393%208%20256%20119%208%20256%208s248%20111%20248%20248zm-132.3-41.2c-9.4%200-17.7%203.9-23.8%2010-22.4-15.5-52.6-25.5-86.1-26.6l17.4-78.3%2055.4%2012.5c0%2013.6%2011.1%2024.6%2024.6%2024.6%2013.8%200%2024.9-11.3%2024.9-24.9s-11.1-24.9-24.9-24.9c-9.7%200-18%205.8-22.1%2013.8l-61.2-13.6c-3-.8-6.1%201.4-6.9%204.4l-19.1%2086.4c-33.2%201.4-63.1%2011.3-85.5%2026.8-6.1-6.4-14.7-10.2-24.1-10.2-34.9%200-46.3%2046.9-14.4%2062.8-1.1%205-1.7%2010.2-1.7%2015.5%200%2052.6%2059.2%2095.2%20132%2095.2%2073.1%200%20132.3-42.6%20132.3-95.2%200-5.3-.6-10.8-1.9-15.8%2031.3-16%2019.8-62.5-14.9-62.5zM302.8%20331c-18.2%2018.2-76.1%2017.9-93.6%200-2.2-2.2-6.1-2.2-8.3%200-2.5%202.5-2.5%206.4%200%208.6%2022.8%2022.8%2087.3%2022.8%20110.2%200%202.5-2.2%202.5-6.1%200-8.6-2.2-2.2-6.1-2.2-8.3%200zm7.7-75c-13.6%200-24.6%2011.1-24.6%2024.9%200%2013.6%2011.1%2024.6%2024.6%2024.6%2013.8%200%2024.9-11.1%2024.9-24.6%200-13.8-11-24.9-24.9-24.9z'/%3e%3c/svg%3e){kind=small}