Install Guide: Add section about passwords
Add a section documenting all the passwords used in this guide. Make passwords consistent Change-Id: Ib9dc8bc53e1ef74c188f1362b29d7001955597ca Closes-Bug: #1259684 backport: havana
This commit is contained in:
Andreas Jaeger
@@ -121,10 +121,10 @@ CACHES = {
|
||||
<step>
|
||||
<para>Create a MySQL user for the newly-created dash
|
||||
database that has full control of the
|
||||
database. Replace <replaceable>DB_PASS</replaceable> with
|
||||
database. Replace <replaceable>DASH_DBPASS</replaceable> with
|
||||
a password for the new user:</para>
|
||||
<para><screen><prompt>mysql></prompt> <userinput>GRANT ALL ON dash.* TO 'dash'@'%' IDENTIFIED BY '<replaceable>DB_PASS</replaceable>';</userinput>
|
||||
<prompt>mysql></prompt> <userinput>GRANT ALL ON dash.* TO 'dash'@'localhost' IDENTIFIED BY '<replaceable>DB_PASS</replaceable>';</userinput></screen></para>
|
||||
<para><screen><prompt>mysql></prompt> <userinput>GRANT ALL ON dash.* TO 'dash'@'%' IDENTIFIED BY '<replaceable>DASH_DBPASS</replaceable>';</userinput>
|
||||
<prompt>mysql></prompt> <userinput>GRANT ALL ON dash.* TO 'dash'@'localhost' IDENTIFIED BY '<replaceable>DASH_DBPASS</replaceable>';</userinput></screen></para>
|
||||
</step>
|
||||
<step>
|
||||
<para>Enter quit at the <literal>mysql></literal>
|
||||
@@ -144,7 +144,7 @@ DATABASES = {
|
||||
'ENGINE': 'django.db.backends.mysql',
|
||||
'NAME': 'dash',
|
||||
'USER': 'dash',
|
||||
'PASSWORD': '<replaceable>DB_PASS</replaceable>',
|
||||
'PASSWORD': '<replaceable>DASH_DBPASS</replaceable>',
|
||||
'HOST': 'localhost',
|
||||
'default-character-set': 'utf8'
|
||||
}
|
||||
|
||||
106
doc/install-guide/ch_basics.xml
Executable file → Normal file
106
doc/install-guide/ch_basics.xml
Executable file → Normal file
@@ -241,6 +241,112 @@ iface eth1 inet static
|
||||
and change the <code>server</code> directive to use the
|
||||
controller node as internet time source.</para>
|
||||
</section>
|
||||
|
||||
<section xml:id="basics-passwords" os="ubuntu;rhel;fedora;centos;opensuse;sles">
|
||||
<title>Passwords</title>
|
||||
|
||||
<para>The various OpenStack services and the required software
|
||||
like the database and the Messaging server have to be password
|
||||
protected. These passwords are needed when configuring a service
|
||||
and then again to access the service. You have to choose a random
|
||||
password while configuring the service and later remember to use
|
||||
the same password when accessing it. To generate a list of passwords, you
|
||||
can use the <application>pwgen</application> program
|
||||
to generate a list of passwords or take the output of:
|
||||
<screen><prompt>$</prompt> <userinput>openssl rand -hex 10</userinput></screen>
|
||||
</para>
|
||||
|
||||
<para>This guide uses the convention that
|
||||
<literal><replaceable>SERVICE_PASS</replaceable></literal> is
|
||||
password to access the service <literal>SERVICE</literal> and
|
||||
<literal><replaceable>SERVICE_DBPASS</replaceable></literal> is
|
||||
the database password used by the service SERVICE to access the
|
||||
database.
|
||||
</para>
|
||||
|
||||
<para>The complete list of passwords you need to define in this guide are:
|
||||
<table rules="all">
|
||||
<caption>Passwords</caption>
|
||||
<thead>
|
||||
<tr>
|
||||
<th>Password name</th>
|
||||
<th>Description</th>
|
||||
</tr>
|
||||
</thead>
|
||||
<tbody>
|
||||
<tr>
|
||||
<td>Database password (no variable used)</td>
|
||||
<td>Root password for the database</td>
|
||||
</tr>
|
||||
<tr os="ubuntu;opensuse;sles">
|
||||
<td><literal><replaceable>RABBIT_PASS</replaceable></literal></td>
|
||||
<td>Password of user guest of RabbitMQ</td>
|
||||
</tr>
|
||||
<tr>
|
||||
<td><literal><replaceable>KEYSTONE_DBPASS</replaceable></literal></td>
|
||||
<td>Database password of Identity service</td>
|
||||
</tr>
|
||||
<tr>
|
||||
<td><literal><replaceable>ADMIN_PASS</replaceable></literal></td>
|
||||
<td>Password of user <literal>admin</literal></td>
|
||||
</tr>
|
||||
<tr>
|
||||
<td><literal><replaceable>GLANCE_DBPASS</replaceable></literal></td>
|
||||
<td>Database password for Image Service</td>
|
||||
</tr>
|
||||
<tr>
|
||||
<td><literal><replaceable>GLANCE_PASS</replaceable></literal></td>
|
||||
<td>Password of Image Service user <literal>glance</literal></td>
|
||||
</tr>
|
||||
<tr>
|
||||
<td><literal><replaceable>NOVA_DBPASS</replaceable></literal></td>
|
||||
<td>Database password for Compute service</td>
|
||||
</tr>
|
||||
<tr>
|
||||
<td><literal><replaceable>NOVA_PASS</replaceable></literal></td>
|
||||
<td>Password of Compute service user <literal>nova</literal></td>
|
||||
</tr>
|
||||
<tr>
|
||||
<td><literal><replaceable>DASH_DBPASS</replaceable></literal></td>
|
||||
<td>Database password for the dashboard</td>
|
||||
</tr>
|
||||
<tr>
|
||||
<td><literal><replaceable>CINDER_DBPASS</replaceable></literal></td>
|
||||
<td>Database password for the Block Storage Service</td>
|
||||
</tr>
|
||||
<tr>
|
||||
<td><literal><replaceable>CINDER_PASS</replaceable></literal></td>
|
||||
<td>Password of Block Storage Service user <literal>cinder</literal></td>
|
||||
</tr>
|
||||
<tr>
|
||||
<td><literal><replaceable>NEUTRON_DBPASS</replaceable></literal></td>
|
||||
<td>Database password for the Networking service</td>
|
||||
</tr>
|
||||
<tr>
|
||||
<td><literal><replaceable>NEUTRON_PASS</replaceable></literal></td>
|
||||
<td>Password of Networking service user <literal>neutron</literal></td>
|
||||
</tr>
|
||||
<tr>
|
||||
<td><literal><replaceable>HEAT_DBPASS</replaceable></literal></td>
|
||||
<td>Database password for the Orchestration service</td>
|
||||
</tr>
|
||||
<tr>
|
||||
<td><literal><replaceable>HEAT_PASS</replaceable></literal></td>
|
||||
<td>Password of Orchestration service user <literal>heat</literal></td>
|
||||
</tr>
|
||||
<tr>
|
||||
<td><literal><replaceable>CEILOMETER_DBPASS</replaceable></literal></td>
|
||||
<td>Database password for the Telemetry service</td>
|
||||
</tr>
|
||||
<tr>
|
||||
<td><literal><replaceable>CEILOMETER_PASS</replaceable></literal></td>
|
||||
<td>Password of Telemetry service user <literal>ceilometer</literal></td>
|
||||
</tr>
|
||||
</tbody>
|
||||
</table>
|
||||
</para>
|
||||
</section>
|
||||
|
||||
<section xml:id="basics-database">
|
||||
<title>MySQL database</title>
|
||||
<para os="ubuntu;debian;rhel;fedora;centos">Most OpenStack
|
||||
|
||||
@@ -407,7 +407,7 @@ use_namespaces=True</programlisting>
|
||||
set. Various clients use these to access the Identity
|
||||
Service.</para>
|
||||
<programlisting language="bash">export OS_USERNAME=admin
|
||||
export OS_PASSWORD=adminpassword
|
||||
export OS_PASSWORD=<replaceable>ADMIN_PASS</replaceable>
|
||||
export OS_TENANT_NAME=admin
|
||||
export OS_AUTH_URL=http://<replaceable>controller</replaceable>:5000/v2.0/</programlisting>
|
||||
</note>
|
||||
|
||||
@@ -374,7 +374,7 @@ bridge_mappings = physnet1:br-eth1</programlisting>
|
||||
file:</para>
|
||||
<programlisting language="bash">export OS_TENANT_NAME=provider_tenant
|
||||
export OS_USERNAME=admin
|
||||
export OS_PASSWORD=password
|
||||
export OS_PASSWORD=<replaceable>ADMIN_PASS</replaceable>
|
||||
export OS_AUTH_URL="http://<replaceable>controller</replaceable>:5000/v2.0/"
|
||||
export OS_SERVICE_ENDPOINT="http://<replaceable>controller</replaceable>:35357/v2.0"
|
||||
export OS_SERVICE_TOKEN=password</programlisting>
|
||||
|
||||
@@ -322,7 +322,7 @@ notification_driver = neutron.openstack.common.notifier.rabbit_notifier</program
|
||||
Identity Service.</para>
|
||||
</note>
|
||||
<programlisting language="bash">export OS_USERNAME=admin
|
||||
export OS_PASSWORD=adminpassword
|
||||
export OS_PASSWORD=<replaceable>ADMIN_PASS</replaceable>
|
||||
export OS_TENANT_NAME=admin
|
||||
export OS_AUTH_URL=http://<replaceable>controller</replaceable>:5000/v2.0/</programlisting>
|
||||
<orderedlist>
|
||||
|
||||
Reference in New Issue
Block a user