Security hardeningOpenStack Compute can be integrated with various third-party
technologies to increase security. For more information, see the
OpenStack
Security Guide.Encrypt Compute metadata trafficOpenStack Juno supports encrypting Compute metadata traffic with
HTTPS. Enable SSL encryption in the metadata_agent.ini
file:Enable the HTTPS protocol:
nova_metadata_protocol = httpsDetermine whether insecure SSL connections are accepted for
Compute metadata server requests. The default value is
:
nova_metadata_insecure = FalseSpecify the path to the client certificate:
nova_client_cert = PATH_TO_CERTSpecify the path to the private key:
nova_client_priv_key = PATH_TO_KEY