Installing Keystone

Perform the following operations on the controller node.

1. Install the Keystone package.

   1	yum -y install openstack-keystone httpd mod_wsgi

2. Modify the /etc/keystone/keystone.conf file.
   1. Open the file.

      1	vi /etc/keystone/keystone.conf

   2. Press i to enter the insert mode and perform the following configurations.
      1. Add the following content under [database]:

         1	connection = mysql+pymysql://keystone:PASSWORD@controller/keystone

         

         • Replace PASSWORD with the password for user keystone to access the database, which is described in Creating the Keystone Database.
         • controller is the hostname of the controller node.
      2. Add the following content under [token]:

         1	provider = fernet

   3. Press Esc, type :wq!, and press Enter to save the file and exit.
3. Populate the Identity service database.

   1	su -s /bin/sh -c "keystone-manage db_sync" keystone

4. Initialize Fernet key repositories.

   1 2	keystone-manage fernet_setup --keystone-user keystone --keystone-group keystone keystone-manage credential_setup --keystone-user keystone --keystone-group keystone

5. Bootstrap the Identity service.

   1 2 3 4 5

   keystone-manage bootstrap --bootstrap-password PASSWORD \ --bootstrap-admin-url http://controller:5000/v3/ \ --bootstrap-internal-url http://controller:5000/v3/ \ --bootstrap-public-url http://controller:5000/v3/ \ --bootstrap-region-id RegionOne

   

   Replace PASSWORD with the password for the keystone user to access the database.