19e604eda2
section_keystone-services.xml: Use "OpenStack Identity" instead of "OpenStack Identity Service" for service creation section_neutron-ml2-network-node.xml: Explain that 10.0.1.21 is the instance tunnels network address of the network node. Give a better warning that two steps are done on the controller node. section_neutron-ml2-compute-node.xml: Explain that 10.0.1.31 is the instance tunnels network address of the first compute node. Change-Id: I57d311fd0413d8a8a13f4746465612096b302e0c
71 lines
3.4 KiB
XML
71 lines
3.4 KiB
XML
<section xmlns="http://docbook.org/ns/docbook"
|
|
xmlns:xlink="http://www.w3.org/1999/xlink" xml:id="keystone-services"
|
|
version="5.0" os="rhel;centos;fedora;opensuse;sles;ubuntu">
|
|
<title>Define services and API endpoints</title>
|
|
<para>So that the Identity Service can track which OpenStack services are
|
|
installed and where they are located on the network, you must register each
|
|
service in your OpenStack installation. To register a service, run these
|
|
commands:</para>
|
|
<itemizedlist>
|
|
<listitem>
|
|
<para><command>keystone service-create</command>. Describes the
|
|
service.</para>
|
|
</listitem>
|
|
<listitem>
|
|
<para><command>keystone endpoint-create</command>. Associates
|
|
<glossterm baseform="API endpoint">API endpoints</glossterm>
|
|
with the service.</para>
|
|
</listitem>
|
|
</itemizedlist>
|
|
<para>You must also register the Identity Service itself. Use the
|
|
<code>OS_SERVICE_TOKEN</code> environment variable, as set previously, for
|
|
authentication.</para>
|
|
<procedure>
|
|
<step>
|
|
<para>Create a service entry for the Identity Service:</para>
|
|
<screen><prompt>$</prompt> <userinput>keystone service-create --name=keystone --type=identity \
|
|
--description="OpenStack Identity"</userinput>
|
|
<computeroutput>+-------------+----------------------------------+
|
|
| Property | Value |
|
|
+-------------+----------------------------------+
|
|
| description | OpenStack Identity |
|
|
| id | 15c11a23667e427e91bc31335b45f4bd |
|
|
| name | keystone |
|
|
| type | identity |
|
|
+-------------+----------------------------------+</computeroutput></screen>
|
|
<para>The service ID is randomly generated and is different from the one
|
|
shown here.</para>
|
|
</step>
|
|
<step>
|
|
<para>Specify an API endpoint for the Identity Service by using the
|
|
returned service ID. When you specify an endpoint, you provide URLs for
|
|
the public API, internal API, and admin API. In this guide, the
|
|
<literal>controller</literal> host name is used. Note that the
|
|
Identity Service uses a different port for the admin API.</para>
|
|
<screen><prompt>$</prompt> <userinput>keystone endpoint-create \
|
|
--service-id=$(keystone service-list | awk '/ identity / {print $2}') \
|
|
--publicurl=http://<replaceable>controller</replaceable>:5000/v2.0 \
|
|
--internalurl=http://<replaceable>controller</replaceable>:5000/v2.0 \
|
|
--adminurl=http://<replaceable>controller</replaceable>:35357/v2.0</userinput>
|
|
<computeroutput>+-------------+-----------------------------------+
|
|
| Property | Value |
|
|
+-------------+-----------------------------------+
|
|
| adminurl | http://controller:35357/v2.0 |
|
|
| id | 11f9c625a3b94a3f8e66bf4e5de2679f |
|
|
| internalurl | http://controller:5000/v2.0 |
|
|
| publicurl | http://controller:5000/v2.0 |
|
|
| region | regionOne |
|
|
| service_id | 15c11a23667e427e91bc31335b45f4bd |
|
|
+-------------+-----------------------------------+</computeroutput></screen>
|
|
</step>
|
|
</procedure>
|
|
<note>
|
|
<para>
|
|
You will need to create an additional endpoint for each service added to
|
|
your OpenStack environment. The sections of this guide associated with
|
|
the installation of each service include the endpoint creation step
|
|
specific to the service.
|
|
</para>
|
|
</note>
|
|
</section>
|