yum -y install openstack-keystone httpd mod_wsgi

cat /etc/group | grep keystone

cat /etc/passwd | grep keystone

mysql -uroot -p000000 -e "CREATE DATABASE keystone;"

mysql -uroot -p000000 -e "grant all privileges on keystone.* to keystone@'localhost' identified by '000000';"

mysql -uroot -p000000 -e "grant all privileges on keystone.* to keystone@'%' identified by '000000';"

cp /etc/keystone/keystone.conf /etc/keystone/keystone.conf.back

vi /etc/keystone/keystone.conf

connection = mysql+pymysql://keystone:000000@controller/keystone

provider = fernet

su keystone -s /bin/sh -c "keystone-manage db_sync"

mysql -uroot -p000000

use keystone;

show tables;

keystone-manage fernet_setup --keystone-user keystone --keystone-group keystone

keystone-manage credential_setup --keystone-user keystone --keystone-group keystone

keystone-manage  bootstrap  --bootstrap-password  000000  --bootstrap-admin-url  http://controller:5000/v3  --bootstrap-internal-url  http://controller:5000/v3  --bootstrap-public-url  http://controller:5000/v3 --bootstrap-region-id RegionOne

ln -s /usr/share/keystone/wsgi-keystone.conf /etc/httpd/conf.d            # 方法1

cp /usr/share/keystone/wsgi-keystone.conf /etc/httpd/conf.d             # 方法2

cp /etc/httpd/conf/httpd.conf /etc/httpd/conf/httpd.conf.back

vi /etc/httpd/conf/httpd.conf

ServerName controller

systemctl start httpd.service && systemctl enable httpd.service

systemctl status httpd

vi admin-login

export OS_USERNAME=admin
export OS_PASSWORD=000000
export OS_PROJECT_NAME=admin
export OS_USER_DOMAIN_NAME=Default
export OS_PROJECT_DOMAIN_NAME=Default
export OS_AUTH_URL=http://controller:5000/v3
export OS_IDENTITY_API_VERSION=3
export OS_IMAGE_API_VERSION=2

source admin-login

export -p

openstack project create --domain default  project 

openstack project list

openstack role create user

openstack role list

openstack domain list

openstack user list