Differences
This shows you the differences between two versions of the page.
|
scgc:laboratoare:10 [2018/05/21 23:13] alexandru.carp [9. Horizon] |
scgc:laboratoare:10 [2021/11/17 18:38] (current) maria.mihailescu |
||
|---|---|---|---|
| Line 1: | Line 1: | ||
| - | ===== Laboratory 10. Openstack security ===== | + | ===== Openstack security ===== |
| + | <hidden> | ||
| + | ==== Complete the Feedback ==== | ||
| + | |||
| + | We invite you to evaluate the SCGC team activity. | ||
| + | |||
| + | <note tip>You can find the **feedback form** in the right side of the main page of SCGC from http://acs.curs.pub.ro in a frame called //"FEEDBACK"//. You must be enrolled in the SCGC course, otherwise you will get an error. | ||
| + | </note> | ||
| + | **Thank you!** | ||
| + | ---- | ||
| + | </hidden> | ||
| ==== Scope ==== | ==== Scope ==== | ||
| Line 21: | Line 31: | ||
| ===== Tasks ====== | ===== Tasks ====== | ||
| - | ==== 0. Creating and preparing the VM ==== | + | ==== 0. [5p] Creating and preparing the VM ==== |
| - | In the faculty's [[http://cloud.curs.pub.ro/|OpenStack cloud]], launch an instance with the following parameters: | + | In the faculty's [[http://cloud.grid.pub.ro/|OpenStack cloud]], launch an instance with the following parameters: |
| - | * //Name//: **newton** | + | * //Name//: **<user-name>-openstack** |
| * //Availability Zone//: **any** | * //Availability Zone//: **any** | ||
| * //Instance boot source//: **Boot from image** | * //Instance boot source//: **Boot from image** | ||
| * //Image name//: **Ubuntu 16.04 Xenial** | * //Image name//: **Ubuntu 16.04 Xenial** | ||
| - | * //Flavor//: **c1.large** | + | * //Flavor//: **m1.large** |
| - | * //Keypair//: your own keypair from ''fep.grid.pub.ro'' | + | |
| - | Connect to the VM from ''fep.grid.pub.ro'', using the username ''ubuntu''. | + | Connect to the VM using the username ''ubuntu''. |
| - | In ''/etc/hosts'', map the IP address of the instance to its hostname: | + | In ''/etc/hosts'', map the IP address of the instance to ''newton'': |
| <code bash> | <code bash> | ||
| $ cat /etc/hosts | $ cat /etc/hosts | ||
| Line 56: | Line 65: | ||
| $ sudo apt dist-upgrade | $ sudo apt dist-upgrade | ||
| </code> | </code> | ||
| + | |||
| + | <note warning> | ||
| + | DO NOT forget to enter the second ''apt-get update'' command! If you do not enter it, an incorrect version of OpenStack will be installed! | ||
| + | </note> | ||
| + | |||
| Install the OpenStack client packages and reboot: | Install the OpenStack client packages and reboot: | ||
| Line 68: | Line 82: | ||
| - | ==== 1. Service prerequisites ==== | + | ==== 1. [10p] Service prerequisites ==== |
| For OpenStack to function, some additional services are required. | For OpenStack to function, some additional services are required. | ||
| Line 122: | Line 136: | ||
| - | ==== 2. Keystone ==== | + | ==== 2. [15p] Keystone ==== |
| === a. Package === | === a. Package === | ||
| Line 220: | Line 234: | ||
| - | ==== 3. Glance ==== | + | ==== 3. [15p] Glance ==== |
| === a. User and role === | === a. User and role === | ||
| Line 382: | Line 396: | ||
| - | ==== 4. Nova ==== | + | ==== 4. [15p] Nova ==== |
| === a. User and role === | === a. User and role === | ||
| Line 507: | Line 521: | ||
| - | ==== 5. The compute node ==== | + | ==== 5. [5p] The compute node ==== |
| Because we cannot create an additional VM, we will configure the **Nova-Compute** service and the hypervisor on the same VM (thus making a hybrid Controller + Compute node). | Because we cannot create an additional VM, we will configure the **Nova-Compute** service and the hypervisor on the same VM (thus making a hybrid Controller + Compute node). | ||
| Line 547: | Line 561: | ||
| - | ==== 6. Booting an instance ==== | + | ==== 6. [5p] Booting an instance ==== |
| First. create a flavor with 1 vCPU, 64 MB RAM and 1 GB Disk: | First. create a flavor with 1 vCPU, 64 MB RAM and 1 GB Disk: | ||
| Line 568: | Line 582: | ||
| - | ==== 7. Projects, users and roles ==== | + | ==== 7. [15p] Projects, users and roles ==== |
| === a. Preparing === | === a. Preparing === | ||
| Line 829: | Line 843: | ||
| - | ==== 8. Custom roles ==== | + | ==== 8. [15p] Custom roles ==== |
| We want to define a special role, called ''glanceadmin'' that will be able to add and delete images in Glance. | We want to define a special role, called ''glanceadmin'' that will be able to add and delete images in Glance. | ||
| Line 958: | Line 972: | ||
| - | ==== 9. Horizon ==== | + | ==== 9. [10p] (Bonus) Horizon ==== |
| Install **Horizon** (the OpenStack dashboard). | Install **Horizon** (the OpenStack dashboard). | ||
| <note> | <note> | ||
| - | **Hint:** You can follow this [[https://docs.openstack.org/newton/install-guide-ubuntu/horizon-install.html/|tutorial]]. | + | **Hint:** You can follow this [[https://docs.openstack.org/newton/install-guide-ubuntu/horizon-install.html|tutorial]]. |
| </note> | </note> | ||
| Line 970: | Line 984: | ||
| </note> | </note> | ||
| - | For testing, launch ''firefox'' from the command-line on ''fep.grid.pub.ro''. | + | For testing, launch ''firefox'' from the command-line on ''fep8.grid.pub.ro''. Make sure to use compression (add the ''-C'' flag to the ''ssh'' command). |
