Merge "Added new parameter auth_s3_keystone_ceph for storage"

This commit is contained in:
Jenkins 2016-08-04 11:52:09 +00:00 committed by Gerrit Code Review
commit f2943f00bf
25 changed files with 11603 additions and 7778 deletions

File diff suppressed because it is too large Load Diff

File diff suppressed because it is too large Load Diff

File diff suppressed because it is too large Load Diff

File diff suppressed because it is too large Load Diff

File diff suppressed because it is too large Load Diff

View File

@ -8,18 +8,28 @@ access:
tenant: admin
user: admin
aodh:
db_password: hiN0y3o2OFkF3f3YSTNjHiOa
user_password: x8jlEMpftPAAraa0ZLQpJUNv
db_password: XK3t8hwKU4oTYgZbhnCaPcDH
user_password: Is9h5h6ZtQBuTTSZsH0EIEom
atop:
interval: '20'
metadata:
enabled: true
group: logging
label: Advanced System & Process Monitor (atop)
toggleable: false
weight: 60
rotate: '7'
service_enabled: true
auth_key: ''
auto_assign_floating_ip: false
base_syslog:
syslog_port: '514'
syslog_server: 10.145.0.2
syslog_server: 10.109.15.2
ceilometer:
db_password: OEdIztuktwNOnB84iQYMiEFV
db_password: CZso0oeyPUsfnVFFLMoxIm0D
enabled: false
metering_secret: sRlCMHRF8DlJoowPlI9bmyu1
user_password: yGYZVvKKbS9xrutMQRzBxoxf
metering_secret: mxFV1GvykmXPA6OmmehDYga0
user_password: GibSwXcus87vQOa3NNcAZKvf
cgroups:
metadata:
always_editable: true
@ -30,9 +40,9 @@ cgroups:
condition: 'true'
weight: 90
cinder:
db_password: CkCcgdSrfEgk9tECQwwkvKXx
fixed_key: d525efbe18d743cb285319c8cd29b9c7260ad20be778331771c36cbc48f742a1
user_password: jNafNiZpYfADPKcuMWCAxAGt
db_password: tSJqjoqPJ8W5P4v4pyZtF4q5
fixed_key: d58b43cceee3b2c4ab0d02492823aca692a0cee09a1724f78946d2d4348be62d
user_password: wAhfP2Q7BH1QWry4b7EsiiUA
cluster:
changes:
- name: attributes
@ -42,16 +52,16 @@ cluster:
- name: networks
node_id: null
- name: interfaces
node_id: 740
node_id: 136
- name: disks
node_id: 740
node_id: 136
- name: interfaces
node_id: 741
node_id: 137
- name: disks
node_id: 741
node_id: 137
components: []
fuel_version: '10.0'
id: 41
id: 16
is_customized: false
is_locked: false
mode: ha_compact
@ -84,12 +94,11 @@ corosync:
debug: false
deployed_before:
value: false
deployment_id: 41
deployment_id: 16
deployment_mode: ha_compact
dpdk: {}
external_dns:
dns_list:
- 10.145.0.1
- 10.109.15.1
metadata:
group: network
label: Host OS DNS Servers
@ -115,31 +124,29 @@ external_ntp:
label: Host OS NTP Servers
weight: 40
ntp_list:
- 0.fuel.pool.ntp.org
- 1.fuel.pool.ntp.org
- 2.fuel.pool.ntp.org
- 10.109.15.1
fail_if_error: false
fqdn: node-741.domain.tld
fqdn: node-137.test.domain.local
fuel_version: '10.0'
glance:
db_password: gVYTXLFWV7WSteVDyXxnRWKl
image_cache_max_size: '5368709120'
user_password: V7JwaZYhYOxc5JdUobV1CLnO
db_password: aV95ERc1H2awsqBv5ynsVzCs
image_cache_max_size: '0'
user_password: GbyVT2aXIYM9QbOElIp5L42u
glance_glare:
user_password: quxjT5v3BpJt2TKxAtmER41f
user_password: IlesA89fZfUPihdhb6mFiT6x
heat:
auth_encryption_key: f5d3fbe51de52233a33f5835e5b3baa0
db_password: VjX33KG2He73XV12oSKfHUEU
auth_encryption_key: e38713ea207e90bcad229ab47f602eca
db_password: L6IRVtCuYkMT6oBwlmYJj29F
enabled: true
rabbit_password: YNbypOhrsUovBbx2SNkVzQas
user_password: 1m0kuWGegb0EdPJ3YMgU3rAm
rabbit_password: uqznniJtms7iXS78SoaqZg7A
user_password: GKSbrt4xvdz31EWHdbMjyVlv
horizon:
secret_key: 0eb852eabb8ca3f0936d2afcaa49b17f0d671fd1879feab7c4d75cb4d7c6d0dd
secret_key: 783f0f68c486bada03e8b7972a7ac4eff6b00faed6cca53dfabd2111643f9521
ironic:
db_password: SpHcDEIeSM0yYsReW3t30X0v
db_password: ijBdO4emlYkRiE8PRdde2QPu
enabled: true
swift_tempurl_key: ic78itqg4AwOypiYAUjDviRo
user_password: sildb8VJkARs8fXD50HsjKWe
swift_tempurl_key: 1ve491fImsNM9EHEFOWlPNs7
user_password: actShEvuis2N2zACV90aHDVA
kernel_params:
kernel: console=tty0 net.ifnames=0 biosdevname=0 rootdelay=90 nomodeset
metadata:
@ -147,12 +154,12 @@ kernel_params:
label: Kernel parameters
weight: 60
keystone:
admin_token: pd48fFOmCUVVGISQjAbwOaCZ
db_password: Lao9Hl9DusSiaWUt4aSMNEt2
last_controller: node-740
admin_token: DDlLc2JjWdfA8uHLafkzi2lR
db_password: lDhJ0v8CcNRVvU74frO0Bk6z
last_controller: node-136
libvirt_type: qemu
management_network_range: 192.168.0.0/24
master_ip: 10.145.0.2
master_ip: 10.109.15.2
metadata:
label: Common
weight: 10
@ -164,15 +171,15 @@ mp:
- point: '2'
weight: '2'
murano:
db_password: 7rrEzKatGDMPnSCTfArIYQMt
db_password: yZHREyf745Nkg5dbOcOBzhwl
enabled: false
rabbit_password: nm6a1orjVXn8Y2knaJ1TEvOg
user_password: ZKADcckGwZkZulNkbuHGk4MZ
rabbit_password: wVUsePS5WGKafTxEla5HpNx9
user_password: USiEN1Rtj3VmGfxRzKVGdzwz
murano-cfapi:
db_password: 9g5o2ueo6k29eEUeTGlNVPaD
db_password: 88HCOq67r1Jj8hJ77EBgECw4
enabled: false
rabbit_password: kubLDDFDFav3izWFRZuMfZU6
user_password: U9MjJayjpEeVx8t8alI5OOs8
rabbit_password: K9w9IlR2MBLRH2GABe6v1GvM
user_password: WqNTH5DXWrYq02wNjREaliwJ
murano_settings:
metadata:
group: openstack_services
@ -185,15 +192,15 @@ murano_settings:
murano_glance_artifacts_plugin: true
murano_repo_url: http://storage.apps.openstack.org/
mysql:
root_password: Y1Mq8J9MhxWeCfdMPlpHMFx0
wsrep_password: vUKmeqyDX4Ljo7VpRf6uFdU1
root_password: 5vMWTCbWnrzItzBpAHMttD53
wsrep_password: iE19Tmxi69uBVWdF7ic7Yxrc
network_metadata:
nodes:
node-740:
fqdn: node-740.domain.tld
name: node-740
node-136:
fqdn: node-136.test.domain.local
name: node-136
network_roles:
admin/pxe: 10.145.0.100
admin/pxe: 10.109.15.100
aodh/api: 192.168.0.2
ceilometer/api: 192.168.0.2
ceph/public: 192.168.1.2
@ -202,7 +209,7 @@ network_metadata:
cinder/api: 192.168.0.2
cinder/iscsi: 192.168.1.2
ex: 172.16.0.2
fw-admin: 10.145.0.100
fw-admin: 10.109.15.100
glance/api: 192.168.0.2
glance/glare: 192.168.0.2
heat/api: 192.168.0.2
@ -233,21 +240,21 @@ network_metadata:
- primary-controller
nova_cpu_pinning_enabled: false
nova_hugepages_enabled: false
swift_zone: '740'
uid: '740'
user_node_name: node-740
node-741:
fqdn: node-741.domain.tld
name: node-741
swift_zone: '136'
uid: '136'
user_node_name: node-136
node-137:
fqdn: node-137.test.domain.local
name: node-137
network_roles:
admin/pxe: 10.145.0.101
admin/pxe: 10.109.15.101
aodh/api: 192.168.0.1
ceilometer/api: 192.168.0.1
ceph/public: 192.168.1.1
ceph/replication: 192.168.1.1
cinder/api: 192.168.0.1
cinder/iscsi: 192.168.1.1
fw-admin: 10.145.0.101
fw-admin: 10.109.15.101
glance/api: 192.168.0.1
glance/glare: 192.168.0.1
heat/api: 192.168.0.1
@ -277,9 +284,9 @@ network_metadata:
- ironic
nova_cpu_pinning_enabled: false
nova_hugepages_enabled: false
swift_zone: '741'
uid: '741'
user_node_name: node-741
swift_zone: '137'
uid: '137'
user_node_name: node-137
vips:
baremetal:
ipaddr: 192.168.3.4
@ -351,10 +358,10 @@ network_scheme:
- 192.168.3.2/24
br-fw-admin:
IP:
- 10.145.0.101/24
gateway: 10.145.0.1
- 10.109.15.101/24
gateway: 10.109.15.1
vendor_specific:
provider_gateway: 10.145.0.1
provider_gateway: 10.109.15.1
br-mgmt:
IP:
- 192.168.0.1/24
@ -648,33 +655,32 @@ node_volumes:
size: 10240
type: lv
nodes:
- fqdn: node-740.domain.tld
- fqdn: node-136.test.domain.local
internal_address: 192.168.0.2
internal_netmask: 255.255.255.0
name: node-740
name: node-136
public_address: 172.16.0.2
public_netmask: 255.255.255.0
role: primary-controller
storage_address: 192.168.1.2
storage_netmask: 255.255.255.0
swift_zone: '740'
uid: '740'
user_node_name: node-740
- fqdn: node-741.domain.tld
swift_zone: '136'
uid: '136'
user_node_name: node-136
- fqdn: node-137.test.domain.local
internal_address: 192.168.0.1
internal_netmask: 255.255.255.0
name: node-741
name: node-137
role: ironic
storage_address: 192.168.1.1
storage_netmask: 255.255.255.0
swift_zone: '741'
uid: '741'
user_node_name: node-741
swift_zone: '137'
uid: '137'
user_node_name: node-137
nova:
db_password: ximHMQh7wIu6fTNtd4F74AKg
enable_hugepages: false
db_password: 18zVWBhBwdoIK35EypULM1Zu
state_path: /var/lib/nova
user_password: ZcQNkzkXWFTxtFnu9tdAql2w
user_password: VeZGjOU9hNaKN45n9Fthmyvw
nova_quota: false
online: true
openstack_version: newton-10.0
@ -686,7 +692,7 @@ operator_user:
label: Operating System Access
weight: 15
name: fueladmin
password: wD9IlVwqhzq1zhXpazD25x6r
password: 3tNpoXbQvRKZHZ9psDygPVg3
sudo: 'ALL=(ALL) NOPASSWD: ALL'
plugins: []
propagate_task_deploy: false
@ -696,11 +702,11 @@ provision:
/:
container: gzip
format: ext4
uri: http://10.145.0.2:8080/targetimages/env_41_ubuntu_1404_amd64.img.gz
uri: http://10.109.15.2:8080/targetimages/env_16_ubuntu_1404_amd64.img.gz
/boot:
container: gzip
format: ext2
uri: http://10.145.0.2:8080/targetimages/env_41_ubuntu_1404_amd64-boot.img.gz
uri: http://10.109.15.2:8080/targetimages/env_16_ubuntu_1404_amd64-boot.img.gz
metadata:
group: general
label: Provision
@ -822,8 +828,8 @@ public_ssl:
weight: 110
services: false
puppet:
manifests: rsync://10.145.0.2:/puppet/newton-10.0/manifests/
modules: rsync://10.145.0.2:/puppet/newton-10.0/modules/
manifests: rsync://10.109.15.2:/puppet/newton-10.0/manifests/
modules: rsync://10.109.15.2:/puppet/newton-10.0/modules/
puppet_debug: true
quantum: true
quantum_settings:
@ -843,13 +849,13 @@ quantum_settings:
L3:
use_namespaces: true
database:
passwd: pZ4pgrDVFXSG2obDDj3Vwnaz
passwd: ZEJrfn9yx71l5aYyKBZJMdt4
default_floating_net: admin_floating_net
default_private_net: admin_internal_net
keystone:
admin_password: XFaVfyWNLjsQ4GNpOspB8xaA
admin_password: adsQgnCTB8cBPXNSeOVZglpn
metadata:
metadata_proxy_shared_secret: 6oEnHzzkWBlDcf4btBTLGx0t
metadata_proxy_shared_secret: HBY2MsQRtFqok6acSnmm93pM
predefined_networks:
admin_floating_net:
L2:
@ -899,7 +905,7 @@ quantum_settings:
shared: true
tenant: admin
rabbit:
password: MDx8hLMqPNKdnM0v2tAVbz54
password: w6mkP2ae9VxqAvVTCt5QLXL7
release:
attributes_metadata:
editable:
@ -1007,6 +1013,49 @@ release:
type: checkbox
value: false
weight: 10
atop:
interval:
description: Interval between the snapshots in seconds
label: Interval between the snapshots
regex:
error: Should be a number of seconds
source: ^[1-9]\d*$
restrictions:
- action: hide
condition: settings:atop.service_enabled.value == false
type: text
value: '20'
weight: 20
metadata:
enabled: true
group: logging
label: Advanced System & Process Monitor (atop)
toggleable: false
weight: 60
rotate:
description: Number of days to keep log files
label: Rotate days
regex:
error: Should be a number of days
source: ^[1-9]\d*$
restrictions:
- action: hide
condition: settings:atop.service_enabled.value == false
type: text
value: '7'
weight: 30
service_enabled:
description: 'NOTE: When enabled, the service may generate logs up to a
gigabyte in size per day.
This should be taken into consideration when determining the correct size
for the log partition.
'
label: Enable atop service
type: checkbox
value: true
weight: 10
cgroups:
metadata:
always_editable: true
@ -1089,6 +1138,18 @@ release:
type: checkbox
value: true
weight: 50
run_ping_checker:
description: Uncheck this box if the public gateway will not be available
or will not respond to ICMP requests to the deployed cluster. If unchecked,
the controllers will not take public gateway availability into account
as part of the cluster health. If the cluster will not have internet
access, you will need to make sure to provide proper offline mirrors for
the deployment to succeed.
group: network
label: Public Gateway is Available
type: checkbox
value: true
weight: 50
task_deploy:
type: hidden
value: true
@ -1509,6 +1570,9 @@ release:
description: Your DNS entries should point to this name. Self-signed certificates
also will use this hostname
label: DNS hostname for public TLS endpoints
regex:
error: Invalid DNS hostname
source: ^[a-zA-Z\d]+[-\.\da-zA-Z]*$
restrictions:
- action: hide
condition: settings:public_ssl.horizon.value == false and settings:public_ssl.services.value
@ -1543,8 +1607,6 @@ release:
Please make sure your Fuel master node has Internet access to the repository
before attempting to create a mirror.
For more details, please refer to the documentation (https://docs.mirantis.com/openstack/fuel/fuel-10.0/operations.html#external-ubuntu-ops).
'
extra_priority: null
type: custom_repo_configuration
@ -1621,11 +1683,70 @@ release:
sudo:
type: hidden
value: 'ALL=(ALL) NOPASSWD: ALL'
ssh:
brute_force_protection:
description: When enabled, the access from all networks (except the provided
ones) will be granted, but the networks will be checked against the brute
force attack.
label: Brute force protection
restrictions:
- action: hide
condition: settings:ssh.security_enabled.value == false
type: checkbox
value: false
weight: 30
metadata:
enabled: true
group: security
label: SSH security
toggleable: false
weight: 120
security_enabled:
description: 'NOTE: When enabled, provide at least one working IP address
(the Fuel Master node IP is already added).
We recommend adding new addresses instead of replacing the provided Fuel
Master node IP.
When disabled (by default), the admin, management, and storage networks
are only allowed to connect to the SSH service.
'
label: Restrict SSH service on network
type: checkbox
value: false
weight: 10
security_networks:
description: IPv4/CIDR address
label: Restrict access to
regex:
error: Invalid IPv4/CIDR address
source: ^(([0-9]|[1-9][0-9]|1[0-9]{2}|2[0-4][0-9]|25[0-5])\.){3}([0-9]|[1-9][0-9]|1[0-9]{2}|2[0-4][0-9]|25[0-5])(\/([0-9]|[1-2][0-9]|3[0-2]))*$
restrictions:
- action: hide
condition: settings:ssh.security_enabled.value == false
type: text_list
value:
- '{settings.MASTER_IP}'
weight: 20
storage:
admin_key:
type: hidden
value:
generator: cephx_key
auth_s3_keystone_ceph:
description: This allows to authenticate S3 requests basing on EC2/S3 credentials
managed by Keystone. Please note that enabling the integration will increase
the latency of S3 requests as well as load on Keystone service. Please
consult with Mirantis Technical Bulletin 27 and Mirantis Support on mitigating
the risks related with load.
label: Enable S3 API Authentication via Keystone in Ceph RadosGW
restrictions:
- action: hide
condition: settings:storage.objects_ceph.value == false
type: checkbox
value: false
weight: 82
bootstrap_osd_key:
type: hidden
value:
@ -1678,6 +1799,9 @@ release:
and Swift API Interfaces. If enabled, this option will prevent Swift from
installing.
label: Ceph RadosGW for objects (Swift API)
restrictions:
- settings:storage.images_ceph.value == false: Ceph RBD for Images should
be selected.
type: checkbox
value: false
weight: 80
@ -1918,6 +2042,12 @@ release:
description: dialog.create_cluster_wizard.compute.qemu_description
label: dialog.create_cluster_wizard.compute.qemu
name: hypervisor:qemu
requires:
- one_of:
items:
- network:neutron:ml2:vlan
- network:neutron:ml2:tun
message: dialog.create_cluster_wizard.compute.qemu_requires_network_backend
weight: 5
- bind:
- settings:common.use_vcenter.value
@ -1927,8 +2057,16 @@ release:
label: dialog.create_cluster_wizard.compute.vcenter
name: hypervisor:vmware
requires:
- message: dialog.create_cluster_wizard.compute.vcenter_warning
name: hypervisor:qemu
- one_of:
items:
- hypervisor:qemu
message: dialog.create_cluster_wizard.compute.vcenter_warning
- one_of:
items:
- network:neutron:ml2:dvs
- network:neutron:ml2:nsx
message: dialog.create_cluster_wizard.compute.vcenter_requires_network_backend
message_invalid: dialog.create_cluster_wizard.compute.vcenter_requires_network_plugins
weight: 15
- compatible:
- name: hypervisor:*
@ -1955,7 +2093,9 @@ release:
label: common.network.neutron_vlan
name: network:neutron:ml2:vlan
requires:
- name: network:neutron:core:ml2
- one_of:
items:
- network:neutron:core:ml2
weight: 5
- bind:
- - cluster:net_provider
@ -1976,7 +2116,9 @@ release:
label: common.network.neutron_tun
name: network:neutron:ml2:tun
requires:
- name: network:neutron:core:ml2
- one_of:
items:
- network:neutron:core:ml2
weight: 10
- bind:
- settings:storage.volumes_lvm.value
@ -2224,6 +2366,7 @@ release:
restrictions:
- action: hide
condition: settings:common.use_vcenter.value == false
message: VMware vCenter not enabled for cluster
weight: 40
compute:
description: A Compute node creates, manages, and terminates virtual machine
@ -2253,10 +2396,12 @@ release:
restrictions:
- action: hide
condition: settings:common.use_vcenter.value == false
message: VMware vCenter not enabled for cluster
weight: 90
controller:
conflicts:
- compute
- ceph-osd
description: The Controller initiates orchestration activities and provides
an external API. Other components like Glance (image storage), Keystone (identity
management), Horizon (OpenStack dashboard) and Nova-Scheduler are installed
@ -2328,6 +2473,7 @@ release:
restrictions:
- action: hide
condition: not ('advanced' in version:feature_groups)
message: Advanced feature should be enabled in feature groups
weight: 80
state: available
version: newton-10.0
@ -2499,7 +2645,7 @@ repo_setup:
section: main restricted
suite: mos10.0
type: deb
uri: http://10.145.0.2:8080/newton-10.0/ubuntu/x86_64
uri: http://10.109.15.2:8080/newton-10.0/ubuntu/x86_64
- name: mos-updates
priority: 1050
section: main restricted
@ -2523,14 +2669,15 @@ repo_setup:
section: main restricted
suite: auxiliary
type: deb
uri: http://10.145.0.2:8080/newton-10.0/ubuntu/auxiliary
uri: http://10.109.15.2:8080/newton-10.0/ubuntu/auxiliary
resume_guests_state_on_host_boot: true
roles:
- ironic
run_ping_checker: true
sahara:
db_password: 5GouiTv573FXUKSa2JfE2it0
db_password: fyBBOKHmjHXJBzwKg6znoojB
enabled: false
user_password: sUFDBiM0LhyEqWCHxvK42N1D
user_password: xnpoIx0CBaJKmeumgAThJ6yC
service_user:
homedir: /var/lib/fuel
metadata:
@ -2541,22 +2688,34 @@ service_user:
condition: 'true'
weight: 10
name: fuel
password: 3nD8uFmJWnF1rrOHdidayYuW
password: 9paPtyxDUWvzFuubRywN8wa2
root_password: r00tme
sudo: 'ALL=(ALL) NOPASSWD: ALL'
ssh:
brute_force_protection: false
metadata:
enabled: true
group: security
label: SSH security
toggleable: false
weight: 120
security_enabled: false
security_networks:
- 10.109.15.2
status: discover
storage:
admin_key: AQAiekhXAAAAABAADbWfvinwBeGWEi7JRaWgag==
bootstrap_osd_key: AQAiekhXAAAAABAAamKsawxkXm99kXmEhWaSGw==
admin_key: AQANCKNXAAAAABAAICIGZeGjdsW4rt37/MYwPg==
auth_s3_keystone_ceph: false
bootstrap_osd_key: AQANCKNXAAAAABAA4XLpGtBmnq+8ECO0ASkafA==
ephemeral_ceph: false
fsid: 6da4a04e-fd5c-4ec8-a394-ae009c5c2f92
fsid: be75cde4-f083-41b2-a4ca-c3f03e85ff10
images_ceph: false
images_vcenter: false
metadata:
group: storage
label: Storage Backends
weight: 60
mon_key: AQAiekhXAAAAABAARw76hwzKmf/x/I0uoyUsnA==
mon_key: AQANCKNXAAAAABAAIUS/B+09OlDWDN7VfezDFw==
objects_ceph: false
osd_pool_size: '3'
per_pool_pg_nums:
@ -2567,13 +2726,13 @@ storage:
images: 128
volumes: 128
pg_num: 128
radosgw_key: AQAiekhXAAAAABAABpQ0tuYU91Jzib/P7uohdw==
radosgw_key: AQANCKNXAAAAABAAUBrikUvMh/a+EG8+eIq3VA==
volumes_block_device: false
volumes_ceph: false
volumes_lvm: true
storage_network_range: 192.168.1.0/24
swift:
user_password: vB61iOPXKRG66V9taTym4NjB
user_password: GSQibP0IGrKQkAfXr9INmFUU
syslog:
metadata:
enabled: false
@ -2595,10 +2754,10 @@ test_vm_image:
os_name: cirros
properties: {}
public: 'true'
uid: '741'
uid: '137'
use_cow_images: true
use_vcenter: false
user_node_name: node-741
user_node_name: node-137
vms_conf: []
workloads_collector:
create_user: false
@ -2610,6 +2769,6 @@ workloads_collector:
- action: hide
condition: 'true'
weight: 10
password: Np6WzPrfRrNNg88sRYY0mp7l
password: lxMOZvzTNujuIE7lVdaQyzzP
tenant: services
username: fuel_stats_user

View File

@ -8,18 +8,28 @@ access:
tenant: admin
user: admin
aodh:
db_password: hiN0y3o2OFkF3f3YSTNjHiOa
user_password: x8jlEMpftPAAraa0ZLQpJUNv
db_password: XK3t8hwKU4oTYgZbhnCaPcDH
user_password: Is9h5h6ZtQBuTTSZsH0EIEom
atop:
interval: '20'
metadata:
enabled: true
group: logging
label: Advanced System & Process Monitor (atop)
toggleable: false
weight: 60
rotate: '7'
service_enabled: true
auth_key: ''
auto_assign_floating_ip: false
base_syslog:
syslog_port: '514'
syslog_server: 10.145.0.2
syslog_server: 10.109.15.2
ceilometer:
db_password: OEdIztuktwNOnB84iQYMiEFV
db_password: CZso0oeyPUsfnVFFLMoxIm0D
enabled: false
metering_secret: sRlCMHRF8DlJoowPlI9bmyu1
user_password: yGYZVvKKbS9xrutMQRzBxoxf
metering_secret: mxFV1GvykmXPA6OmmehDYga0
user_password: GibSwXcus87vQOa3NNcAZKvf
cgroups:
metadata:
always_editable: true
@ -30,9 +40,9 @@ cgroups:
condition: 'true'
weight: 90
cinder:
db_password: CkCcgdSrfEgk9tECQwwkvKXx
fixed_key: d525efbe18d743cb285319c8cd29b9c7260ad20be778331771c36cbc48f742a1
user_password: jNafNiZpYfADPKcuMWCAxAGt
db_password: tSJqjoqPJ8W5P4v4pyZtF4q5
fixed_key: d58b43cceee3b2c4ab0d02492823aca692a0cee09a1724f78946d2d4348be62d
user_password: wAhfP2Q7BH1QWry4b7EsiiUA
cluster:
changes:
- name: attributes
@ -42,16 +52,16 @@ cluster:
- name: networks
node_id: null
- name: interfaces
node_id: 740
node_id: 136
- name: disks
node_id: 740
node_id: 136
- name: interfaces
node_id: 741
node_id: 137
- name: disks
node_id: 741
node_id: 137
components: []
fuel_version: '10.0'
id: 41
id: 16
is_customized: false
is_locked: false
mode: ha_compact
@ -84,12 +94,11 @@ corosync:
debug: false
deployed_before:
value: false
deployment_id: 41
deployment_id: 16
deployment_mode: ha_compact
dpdk: {}
external_dns:
dns_list:
- 10.145.0.1
- 10.109.15.1
metadata:
group: network
label: Host OS DNS Servers
@ -115,31 +124,29 @@ external_ntp:
label: Host OS NTP Servers
weight: 40
ntp_list:
- 0.fuel.pool.ntp.org
- 1.fuel.pool.ntp.org
- 2.fuel.pool.ntp.org
- 10.109.15.1
fail_if_error: true
fqdn: node-740.domain.tld
fqdn: node-136.test.domain.local
fuel_version: '10.0'
glance:
db_password: gVYTXLFWV7WSteVDyXxnRWKl
db_password: aV95ERc1H2awsqBv5ynsVzCs
image_cache_max_size: '389537175961'
user_password: V7JwaZYhYOxc5JdUobV1CLnO
user_password: GbyVT2aXIYM9QbOElIp5L42u
glance_glare:
user_password: quxjT5v3BpJt2TKxAtmER41f
user_password: IlesA89fZfUPihdhb6mFiT6x
heat:
auth_encryption_key: f5d3fbe51de52233a33f5835e5b3baa0
db_password: VjX33KG2He73XV12oSKfHUEU
auth_encryption_key: e38713ea207e90bcad229ab47f602eca
db_password: L6IRVtCuYkMT6oBwlmYJj29F
enabled: true
rabbit_password: YNbypOhrsUovBbx2SNkVzQas
user_password: 1m0kuWGegb0EdPJ3YMgU3rAm
rabbit_password: uqznniJtms7iXS78SoaqZg7A
user_password: GKSbrt4xvdz31EWHdbMjyVlv
horizon:
secret_key: 0eb852eabb8ca3f0936d2afcaa49b17f0d671fd1879feab7c4d75cb4d7c6d0dd
secret_key: 783f0f68c486bada03e8b7972a7ac4eff6b00faed6cca53dfabd2111643f9521
ironic:
db_password: SpHcDEIeSM0yYsReW3t30X0v
db_password: ijBdO4emlYkRiE8PRdde2QPu
enabled: true
swift_tempurl_key: ic78itqg4AwOypiYAUjDviRo
user_password: sildb8VJkARs8fXD50HsjKWe
swift_tempurl_key: 1ve491fImsNM9EHEFOWlPNs7
user_password: actShEvuis2N2zACV90aHDVA
kernel_params:
kernel: console=tty0 net.ifnames=0 biosdevname=0 rootdelay=90 nomodeset
metadata:
@ -147,12 +154,12 @@ kernel_params:
label: Kernel parameters
weight: 60
keystone:
admin_token: pd48fFOmCUVVGISQjAbwOaCZ
db_password: Lao9Hl9DusSiaWUt4aSMNEt2
last_controller: node-740
admin_token: DDlLc2JjWdfA8uHLafkzi2lR
db_password: lDhJ0v8CcNRVvU74frO0Bk6z
last_controller: node-136
libvirt_type: qemu
management_network_range: 192.168.0.0/24
master_ip: 10.145.0.2
master_ip: 10.109.15.2
metadata:
label: Common
weight: 10
@ -164,15 +171,15 @@ mp:
- point: '2'
weight: '2'
murano:
db_password: 7rrEzKatGDMPnSCTfArIYQMt
db_password: yZHREyf745Nkg5dbOcOBzhwl
enabled: false
rabbit_password: nm6a1orjVXn8Y2knaJ1TEvOg
user_password: ZKADcckGwZkZulNkbuHGk4MZ
rabbit_password: wVUsePS5WGKafTxEla5HpNx9
user_password: USiEN1Rtj3VmGfxRzKVGdzwz
murano-cfapi:
db_password: 9g5o2ueo6k29eEUeTGlNVPaD
db_password: 88HCOq67r1Jj8hJ77EBgECw4
enabled: false
rabbit_password: kubLDDFDFav3izWFRZuMfZU6
user_password: U9MjJayjpEeVx8t8alI5OOs8
rabbit_password: K9w9IlR2MBLRH2GABe6v1GvM
user_password: WqNTH5DXWrYq02wNjREaliwJ
murano_settings:
metadata:
group: openstack_services
@ -185,15 +192,15 @@ murano_settings:
murano_glance_artifacts_plugin: true
murano_repo_url: http://storage.apps.openstack.org/
mysql:
root_password: Y1Mq8J9MhxWeCfdMPlpHMFx0
wsrep_password: vUKmeqyDX4Ljo7VpRf6uFdU1
root_password: 5vMWTCbWnrzItzBpAHMttD53
wsrep_password: iE19Tmxi69uBVWdF7ic7Yxrc
network_metadata:
nodes:
node-740:
fqdn: node-740.domain.tld
name: node-740
node-136:
fqdn: node-136.test.domain.local
name: node-136
network_roles:
admin/pxe: 10.145.0.100
admin/pxe: 10.109.15.100
aodh/api: 192.168.0.2
ceilometer/api: 192.168.0.2
ceph/public: 192.168.1.2
@ -202,7 +209,7 @@ network_metadata:
cinder/api: 192.168.0.2
cinder/iscsi: 192.168.1.2
ex: 172.16.0.2
fw-admin: 10.145.0.100
fw-admin: 10.109.15.100
glance/api: 192.168.0.2
glance/glare: 192.168.0.2
heat/api: 192.168.0.2
@ -233,21 +240,21 @@ network_metadata:
- primary-controller
nova_cpu_pinning_enabled: false
nova_hugepages_enabled: false
swift_zone: '740'
uid: '740'
user_node_name: node-740
node-741:
fqdn: node-741.domain.tld
name: node-741
swift_zone: '136'
uid: '136'
user_node_name: node-136
node-137:
fqdn: node-137.test.domain.local
name: node-137
network_roles:
admin/pxe: 10.145.0.101
admin/pxe: 10.109.15.101
aodh/api: 192.168.0.1
ceilometer/api: 192.168.0.1
ceph/public: 192.168.1.1
ceph/replication: 192.168.1.1
cinder/api: 192.168.0.1
cinder/iscsi: 192.168.1.1
fw-admin: 10.145.0.101
fw-admin: 10.109.15.101
glance/api: 192.168.0.1
glance/glare: 192.168.0.1
heat/api: 192.168.0.1
@ -277,9 +284,9 @@ network_metadata:
- ironic
nova_cpu_pinning_enabled: false
nova_hugepages_enabled: false
swift_zone: '741'
uid: '741'
user_node_name: node-741
swift_zone: '137'
uid: '137'
user_node_name: node-137
vips:
baremetal:
ipaddr: 192.168.3.4
@ -359,9 +366,9 @@ network_scheme:
IP: none
br-fw-admin:
IP:
- 10.145.0.100/24
- 10.109.15.100/24
vendor_specific:
provider_gateway: 10.145.0.1
provider_gateway: 10.109.15.1
br-mgmt:
IP:
- 192.168.0.2/24
@ -778,33 +785,32 @@ node_volumes:
size: 11264
type: lv
nodes:
- fqdn: node-740.domain.tld
- fqdn: node-136.test.domain.local
internal_address: 192.168.0.2
internal_netmask: 255.255.255.0
name: node-740
name: node-136
public_address: 172.16.0.2
public_netmask: 255.255.255.0
role: primary-controller
storage_address: 192.168.1.2
storage_netmask: 255.255.255.0
swift_zone: '740'
uid: '740'
user_node_name: node-740
- fqdn: node-741.domain.tld
swift_zone: '136'
uid: '136'
user_node_name: node-136
- fqdn: node-137.test.domain.local
internal_address: 192.168.0.1
internal_netmask: 255.255.255.0
name: node-741
name: node-137
role: ironic
storage_address: 192.168.1.1
storage_netmask: 255.255.255.0
swift_zone: '741'
uid: '741'
user_node_name: node-741
swift_zone: '137'
uid: '137'
user_node_name: node-137
nova:
db_password: ximHMQh7wIu6fTNtd4F74AKg
enable_hugepages: false
db_password: 18zVWBhBwdoIK35EypULM1Zu
state_path: /var/lib/nova
user_password: ZcQNkzkXWFTxtFnu9tdAql2w
user_password: VeZGjOU9hNaKN45n9Fthmyvw
nova_quota: false
online: true
openstack_version: newton-10.0
@ -816,7 +822,7 @@ operator_user:
label: Operating System Access
weight: 15
name: fueladmin
password: wD9IlVwqhzq1zhXpazD25x6r
password: 3tNpoXbQvRKZHZ9psDygPVg3
sudo: 'ALL=(ALL) NOPASSWD: ALL'
plugins: []
propagate_task_deploy: false
@ -826,11 +832,11 @@ provision:
/:
container: gzip
format: ext4
uri: http://10.145.0.2:8080/targetimages/env_41_ubuntu_1404_amd64.img.gz
uri: http://10.109.15.2:8080/targetimages/env_16_ubuntu_1404_amd64.img.gz
/boot:
container: gzip
format: ext2
uri: http://10.145.0.2:8080/targetimages/env_41_ubuntu_1404_amd64-boot.img.gz
uri: http://10.109.15.2:8080/targetimages/env_16_ubuntu_1404_amd64-boot.img.gz
metadata:
group: general
label: Provision
@ -952,8 +958,8 @@ public_ssl:
weight: 110
services: false
puppet:
manifests: rsync://10.145.0.2:/puppet/newton-10.0/manifests/
modules: rsync://10.145.0.2:/puppet/newton-10.0/modules/
manifests: rsync://10.109.15.2:/puppet/newton-10.0/manifests/
modules: rsync://10.109.15.2:/puppet/newton-10.0/modules/
puppet_debug: true
quantum: true
quantum_settings:
@ -973,13 +979,13 @@ quantum_settings:
L3:
use_namespaces: true
database:
passwd: pZ4pgrDVFXSG2obDDj3Vwnaz
passwd: ZEJrfn9yx71l5aYyKBZJMdt4
default_floating_net: admin_floating_net
default_private_net: admin_internal_net
keystone:
admin_password: XFaVfyWNLjsQ4GNpOspB8xaA
admin_password: adsQgnCTB8cBPXNSeOVZglpn
metadata:
metadata_proxy_shared_secret: 6oEnHzzkWBlDcf4btBTLGx0t
metadata_proxy_shared_secret: HBY2MsQRtFqok6acSnmm93pM
predefined_networks:
admin_floating_net:
L2:
@ -1029,7 +1035,7 @@ quantum_settings:
shared: true
tenant: admin
rabbit:
password: MDx8hLMqPNKdnM0v2tAVbz54
password: w6mkP2ae9VxqAvVTCt5QLXL7
release:
attributes_metadata:
editable:
@ -1137,6 +1143,49 @@ release:
type: checkbox
value: false
weight: 10
atop:
interval:
description: Interval between the snapshots in seconds
label: Interval between the snapshots
regex:
error: Should be a number of seconds
source: ^[1-9]\d*$
restrictions:
- action: hide
condition: settings:atop.service_enabled.value == false
type: text
value: '20'
weight: 20
metadata:
enabled: true
group: logging
label: Advanced System & Process Monitor (atop)
toggleable: false
weight: 60
rotate:
description: Number of days to keep log files
label: Rotate days
regex:
error: Should be a number of days
source: ^[1-9]\d*$
restrictions:
- action: hide
condition: settings:atop.service_enabled.value == false
type: text
value: '7'
weight: 30
service_enabled:
description: 'NOTE: When enabled, the service may generate logs up to a
gigabyte in size per day.
This should be taken into consideration when determining the correct size
for the log partition.
'
label: Enable atop service
type: checkbox
value: true
weight: 10
cgroups:
metadata:
always_editable: true
@ -1219,6 +1268,18 @@ release:
type: checkbox
value: true
weight: 50
run_ping_checker:
description: Uncheck this box if the public gateway will not be available
or will not respond to ICMP requests to the deployed cluster. If unchecked,
the controllers will not take public gateway availability into account
as part of the cluster health. If the cluster will not have internet
access, you will need to make sure to provide proper offline mirrors for
the deployment to succeed.
group: network
label: Public Gateway is Available
type: checkbox
value: true
weight: 50
task_deploy:
type: hidden
value: true
@ -1639,6 +1700,9 @@ release:
description: Your DNS entries should point to this name. Self-signed certificates
also will use this hostname
label: DNS hostname for public TLS endpoints
regex:
error: Invalid DNS hostname
source: ^[a-zA-Z\d]+[-\.\da-zA-Z]*$
restrictions:
- action: hide
condition: settings:public_ssl.horizon.value == false and settings:public_ssl.services.value
@ -1673,8 +1737,6 @@ release:
Please make sure your Fuel master node has Internet access to the repository
before attempting to create a mirror.
For more details, please refer to the documentation (https://docs.mirantis.com/openstack/fuel/fuel-10.0/operations.html#external-ubuntu-ops).
'
extra_priority: null
type: custom_repo_configuration
@ -1751,11 +1813,70 @@ release:
sudo:
type: hidden
value: 'ALL=(ALL) NOPASSWD: ALL'
ssh:
brute_force_protection:
description: When enabled, the access from all networks (except the provided
ones) will be granted, but the networks will be checked against the brute
force attack.
label: Brute force protection
restrictions:
- action: hide
condition: settings:ssh.security_enabled.value == false
type: checkbox
value: false
weight: 30
metadata:
enabled: true
group: security
label: SSH security
toggleable: false
weight: 120
security_enabled:
description: 'NOTE: When enabled, provide at least one working IP address
(the Fuel Master node IP is already added).
We recommend adding new addresses instead of replacing the provided Fuel
Master node IP.
When disabled (by default), the admin, management, and storage networks
are only allowed to connect to the SSH service.
'
label: Restrict SSH service on network
type: checkbox
value: false
weight: 10
security_networks:
description: IPv4/CIDR address
label: Restrict access to
regex:
error: Invalid IPv4/CIDR address
source: ^(([0-9]|[1-9][0-9]|1[0-9]{2}|2[0-4][0-9]|25[0-5])\.){3}([0-9]|[1-9][0-9]|1[0-9]{2}|2[0-4][0-9]|25[0-5])(\/([0-9]|[1-2][0-9]|3[0-2]))*$
restrictions:
- action: hide
condition: settings:ssh.security_enabled.value == false
type: text_list
value:
- '{settings.MASTER_IP}'
weight: 20
storage:
admin_key:
type: hidden
value:
generator: cephx_key
auth_s3_keystone_ceph:
description: This allows to authenticate S3 requests basing on EC2/S3 credentials
managed by Keystone. Please note that enabling the integration will increase
the latency of S3 requests as well as load on Keystone service. Please
consult with Mirantis Technical Bulletin 27 and Mirantis Support on mitigating
the risks related with load.
label: Enable S3 API Authentication via Keystone in Ceph RadosGW
restrictions:
- action: hide
condition: settings:storage.objects_ceph.value == false
type: checkbox
value: false
weight: 82
bootstrap_osd_key:
type: hidden
value:
@ -1808,6 +1929,9 @@ release:
and Swift API Interfaces. If enabled, this option will prevent Swift from
installing.
label: Ceph RadosGW for objects (Swift API)
restrictions:
- settings:storage.images_ceph.value == false: Ceph RBD for Images should
be selected.
type: checkbox
value: false
weight: 80
@ -2048,6 +2172,12 @@ release:
description: dialog.create_cluster_wizard.compute.qemu_description
label: dialog.create_cluster_wizard.compute.qemu
name: hypervisor:qemu
requires:
- one_of:
items:
- network:neutron:ml2:vlan
- network:neutron:ml2:tun
message: dialog.create_cluster_wizard.compute.qemu_requires_network_backend
weight: 5
- bind:
- settings:common.use_vcenter.value
@ -2057,8 +2187,16 @@ release:
label: dialog.create_cluster_wizard.compute.vcenter
name: hypervisor:vmware
requires:
- message: dialog.create_cluster_wizard.compute.vcenter_warning
name: hypervisor:qemu
- one_of:
items:
- hypervisor:qemu
message: dialog.create_cluster_wizard.compute.vcenter_warning
- one_of:
items:
- network:neutron:ml2:dvs
- network:neutron:ml2:nsx
message: dialog.create_cluster_wizard.compute.vcenter_requires_network_backend
message_invalid: dialog.create_cluster_wizard.compute.vcenter_requires_network_plugins
weight: 15
- compatible:
- name: hypervisor:*
@ -2085,7 +2223,9 @@ release:
label: common.network.neutron_vlan
name: network:neutron:ml2:vlan
requires:
- name: network:neutron:core:ml2
- one_of:
items:
- network:neutron:core:ml2
weight: 5
- bind:
- - cluster:net_provider
@ -2106,7 +2246,9 @@ release:
label: common.network.neutron_tun
name: network:neutron:ml2:tun
requires:
- name: network:neutron:core:ml2
- one_of:
items:
- network:neutron:core:ml2
weight: 10
- bind:
- settings:storage.volumes_lvm.value
@ -2354,6 +2496,7 @@ release:
restrictions:
- action: hide
condition: settings:common.use_vcenter.value == false
message: VMware vCenter not enabled for cluster
weight: 40
compute:
description: A Compute node creates, manages, and terminates virtual machine
@ -2383,10 +2526,12 @@ release:
restrictions:
- action: hide
condition: settings:common.use_vcenter.value == false
message: VMware vCenter not enabled for cluster
weight: 90
controller:
conflicts:
- compute
- ceph-osd
description: The Controller initiates orchestration activities and provides
an external API. Other components like Glance (image storage), Keystone (identity
management), Horizon (OpenStack dashboard) and Nova-Scheduler are installed
@ -2458,6 +2603,7 @@ release:
restrictions:
- action: hide
condition: not ('advanced' in version:feature_groups)
message: Advanced feature should be enabled in feature groups
weight: 80
state: available
version: newton-10.0
@ -2629,7 +2775,7 @@ repo_setup:
section: main restricted
suite: mos10.0
type: deb
uri: http://10.145.0.2:8080/newton-10.0/ubuntu/x86_64
uri: http://10.109.15.2:8080/newton-10.0/ubuntu/x86_64
- name: mos-updates
priority: 1050
section: main restricted
@ -2653,14 +2799,15 @@ repo_setup:
section: main restricted
suite: auxiliary
type: deb
uri: http://10.145.0.2:8080/newton-10.0/ubuntu/auxiliary
uri: http://10.109.15.2:8080/newton-10.0/ubuntu/auxiliary
resume_guests_state_on_host_boot: true
roles:
- primary-controller
run_ping_checker: true
sahara:
db_password: 5GouiTv573FXUKSa2JfE2it0
db_password: fyBBOKHmjHXJBzwKg6znoojB
enabled: false
user_password: sUFDBiM0LhyEqWCHxvK42N1D
user_password: xnpoIx0CBaJKmeumgAThJ6yC
service_user:
homedir: /var/lib/fuel
metadata:
@ -2671,22 +2818,34 @@ service_user:
condition: 'true'
weight: 10
name: fuel
password: 3nD8uFmJWnF1rrOHdidayYuW
password: 9paPtyxDUWvzFuubRywN8wa2
root_password: r00tme
sudo: 'ALL=(ALL) NOPASSWD: ALL'
ssh:
brute_force_protection: false
metadata:
enabled: true
group: security
label: SSH security
toggleable: false
weight: 120
security_enabled: false
security_networks:
- 10.109.15.2
status: discover
storage:
admin_key: AQAiekhXAAAAABAADbWfvinwBeGWEi7JRaWgag==
bootstrap_osd_key: AQAiekhXAAAAABAAamKsawxkXm99kXmEhWaSGw==
admin_key: AQANCKNXAAAAABAAICIGZeGjdsW4rt37/MYwPg==
auth_s3_keystone_ceph: false
bootstrap_osd_key: AQANCKNXAAAAABAA4XLpGtBmnq+8ECO0ASkafA==
ephemeral_ceph: false
fsid: 6da4a04e-fd5c-4ec8-a394-ae009c5c2f92
fsid: be75cde4-f083-41b2-a4ca-c3f03e85ff10
images_ceph: false
images_vcenter: false
metadata:
group: storage
label: Storage Backends
weight: 60
mon_key: AQAiekhXAAAAABAARw76hwzKmf/x/I0uoyUsnA==
mon_key: AQANCKNXAAAAABAAIUS/B+09OlDWDN7VfezDFw==
objects_ceph: false
osd_pool_size: '3'
per_pool_pg_nums:
@ -2697,13 +2856,13 @@ storage:
images: 128
volumes: 128
pg_num: 128
radosgw_key: AQAiekhXAAAAABAABpQ0tuYU91Jzib/P7uohdw==
radosgw_key: AQANCKNXAAAAABAAUBrikUvMh/a+EG8+eIq3VA==
volumes_block_device: false
volumes_ceph: false
volumes_lvm: true
storage_network_range: 192.168.1.0/24
swift:
user_password: vB61iOPXKRG66V9taTym4NjB
user_password: GSQibP0IGrKQkAfXr9INmFUU
syslog:
metadata:
enabled: false
@ -2725,10 +2884,10 @@ test_vm_image:
os_name: cirros
properties: {}
public: 'true'
uid: '740'
uid: '136'
use_cow_images: true
use_vcenter: false
user_node_name: node-740
user_node_name: node-136
vms_conf: []
workloads_collector:
create_user: false
@ -2740,6 +2899,6 @@ workloads_collector:
- action: hide
condition: 'true'
weight: 10
password: Np6WzPrfRrNNg88sRYY0mp7l
password: lxMOZvzTNujuIE7lVdaQyzzP
tenant: services
username: fuel_stats_user

View File

@ -8,18 +8,28 @@ access:
tenant: admin
user: admin
aodh:
db_password: 7j3w5vVSvgjbq34JSyQ75dN7
user_password: xK3HqxRvj6yccZcQcKw1HsiK
db_password: fTG2UYBvKZDeNDA9TAu9pH1D
user_password: 4Ld23EdM8F7eeqn2j2MbEsDk
atop:
interval: '20'
metadata:
enabled: true
group: logging
label: Advanced System & Process Monitor (atop)
toggleable: false
weight: 60
rotate: '7'
service_enabled: true
auth_key: ''
auto_assign_floating_ip: false
base_syslog:
syslog_port: '514'
syslog_server: 10.145.0.2
syslog_server: 10.109.15.2
ceilometer:
db_password: ucnMYHhGTaxRt8pdfTAhejJB
db_password: oWhPeenq8xLR1oSCgQWvDTTV
enabled: false
metering_secret: BUek3Z44dLw4dJFHCRiKpvwF
user_password: vYsfWtMK3mez3bTP2b7JULIy
metering_secret: rMMSspJxqlFQ0gNkBMRfWZe4
user_password: oFJ3w48Vno34ojMWYmlQ2cau
cgroups:
metadata:
always_editable: true
@ -30,9 +40,9 @@ cgroups:
condition: 'true'
weight: 90
cinder:
db_password: o1MiNAm7BXJjctXPV7KDAlvZ
fixed_key: ea26f10c6feb8f10069796997d6d1189c9288023d1461236cf2fc962849e70fa
user_password: VddFPJO9aj8xTZgaGcgiKLeM
db_password: Mh0PPiud65Qn3r3qXeYVgqDj
fixed_key: 4c286a83354367390797cf7c751eb2144db45a80fbc9b4277f0ab699e9a11b3b
user_password: 5bmKBYRy3iRAzJ4IEqs86NdT
cluster:
changes:
- name: attributes
@ -42,20 +52,20 @@ cluster:
- name: networks
node_id: null
- name: interfaces
node_id: 750
node_id: 146
- name: disks
node_id: 750
node_id: 146
- name: interfaces
node_id: 751
node_id: 147
- name: disks
node_id: 751
node_id: 147
- name: interfaces
node_id: 752
node_id: 148
- name: disks
node_id: 752
node_id: 148
components: []
fuel_version: '10.0'
id: 42
id: 17
is_customized: false
is_locked: false
mode: ha_compact
@ -88,12 +98,11 @@ corosync:
debug: false
deployed_before:
value: false
deployment_id: 42
deployment_id: 17
deployment_mode: ha_compact
dpdk: {}
external_dns:
dns_list:
- 10.145.0.1
- 10.109.15.1
metadata:
group: network
label: Host OS DNS Servers
@ -119,31 +128,29 @@ external_ntp:
label: Host OS NTP Servers
weight: 40
ntp_list:
- 0.fuel.pool.ntp.org
- 1.fuel.pool.ntp.org
- 2.fuel.pool.ntp.org
- 10.109.15.1
fail_if_error: true
fqdn: node-750.domain.tld
fqdn: node-146.test.domain.local
fuel_version: '10.0'
glance:
db_password: KwfH9ZWNIdSxRnYCNmiagUdk
db_password: GYxtQiMKDb5K7tmZo0rFTut1
image_cache_max_size: '389537175961'
user_password: g7wSdgapZGaLH5s0ccFrdYr7
user_password: SfPI5FYXK2wfTBkLL2z6ZVMK
glance_glare:
user_password: hsj5zoOrR78l0rp0ia5ouEzt
user_password: mGvWAhWF6FJRgn9usmpUTarY
heat:
auth_encryption_key: 40032089313a012a4a9f9f3540c61e9a
db_password: RaG0yb1ts5gcK6IZXJk2hVx9
auth_encryption_key: a26dc66ee5b68c2b9cfb7fe085728e86
db_password: EsvLELan6iukN5yDLPJ2fyh5
enabled: true
rabbit_password: jVuBaw5bkTuSQX9jnzVkPd5z
user_password: QJFWNaGQTALMwA2E2xmJsnBn
rabbit_password: oxzRc7tSDwKCm4PStz7gC1aW
user_password: LHFstLqeT9L93Tj3EDCoyYbD
horizon:
secret_key: f38f3ac617f74ff20cb579ef1bce66ae77763f26b16ca6491260ab1feaa448b4
secret_key: 542dad2c900902d116d7d11e1a24dc95526bb96920ad63b2103c3dd8c4f9ea84
ironic:
db_password: lJoowNRvUuCf6zT4V1QPXZe2
db_password: UfnJMWqNxd3UC9ryzaUsP0W2
enabled: false
swift_tempurl_key: w9NTMHS4tOmGPpzCAmFwzlB5
user_password: WUecqWZZmsheyt4i9qvP5St5
swift_tempurl_key: lW2cBzuTOBoruzoPMb46BUJK
user_password: C9Zen8KoOYPJlOH90A0UD6I5
kernel_params:
kernel: console=tty0 net.ifnames=0 biosdevname=0 rootdelay=90 nomodeset
metadata:
@ -151,12 +158,12 @@ kernel_params:
label: Kernel parameters
weight: 60
keystone:
admin_token: 8hxLbNdn8o9pT3nSTLmY3AJu
db_password: maVEtYGyZ65HUXiRbZJIIs2v
last_controller: node-752
admin_token: 7Kq1CywuBMQUnqcEi4kEPTNH
db_password: yrJShNwbNlPKgeGRnJn8cHll
last_controller: node-148
libvirt_type: qemu
management_network_range: 192.168.0.0/24
master_ip: 10.145.0.2
master_ip: 10.109.15.2
metadata:
label: Common
weight: 10
@ -168,15 +175,15 @@ mp:
- point: '2'
weight: '2'
murano:
db_password: lqxY73mPKA1etCUW1By1uJ55
db_password: 7YG26rZKPLESGohgInb18FyT
enabled: false
rabbit_password: jheazxWvz0XlTXmyUj0RxfCX
user_password: l9fBki5GRiRRhuYFFUxx3w88
rabbit_password: kNyHQIfyaTfB5dQXoL0AZnML
user_password: hTOgx33sIP7mynagqpd3q8Ut
murano-cfapi:
db_password: XmoTRj6WHdO2ejel389tcBA3
db_password: eRKU8BMu9GEwxvXPo3M47c6Y
enabled: false
rabbit_password: VGBZK9x0BHrBJXagf1eXGfV4
user_password: P3uFu4JbnwmIvosjo8ksEWyo
rabbit_password: PmttpiIvsyI5D6iiW8zFncyy
user_password: U4Xv4TMqOrfTUlELubsbY3ql
murano_settings:
metadata:
group: openstack_services
@ -189,15 +196,62 @@ murano_settings:
murano_glance_artifacts_plugin: true
murano_repo_url: http://storage.apps.openstack.org/
mysql:
root_password: MguARNj9HbYrPaTxIMnQ9zii
wsrep_password: oH39uJM2PEk6YiTux6JnXWB7
root_password: jrKJrlkH2V33stGRS83sKcp9
wsrep_password: 7ZWGnr7Tj6LtY9olzmNYRQI3
network_metadata:
nodes:
node-750:
fqdn: node-750.domain.tld
name: node-750
node-146:
fqdn: node-146.test.domain.local
name: node-146
network_roles:
admin/pxe: 10.145.0.100
admin/pxe: 10.109.15.100
aodh/api: 192.168.0.3
ceilometer/api: 192.168.0.3
ceph/public: 192.168.1.3
ceph/radosgw: 172.16.0.4
ceph/replication: 192.168.1.3
cinder/api: 192.168.0.3
cinder/iscsi: 192.168.1.3
ex: 172.16.0.4
fw-admin: 10.109.15.100
glance/api: 192.168.0.3
glance/glare: 192.168.0.3
heat/api: 192.168.0.3
horizon: 192.168.0.3
ironic/api: 192.168.0.3
keystone/api: 192.168.0.3
management: 192.168.0.3
mgmt/corosync: 192.168.0.3
mgmt/database: 192.168.0.3
mgmt/memcache: 192.168.0.3
mgmt/messaging: 192.168.0.3
mgmt/vip: 192.168.0.3
mongo/db: 192.168.0.3
murano/api: 192.168.0.3
murano/cfapi: 192.168.0.3
neutron/api: 192.168.0.3
neutron/floating: null
neutron/mesh: 192.168.2.3
neutron/private: null
nova/api: 192.168.0.3
nova/migration: 192.168.0.3
public/vip: 172.16.0.4
sahara/api: 192.168.0.3
storage: 192.168.1.3
swift/api: 192.168.0.3
swift/replication: 192.168.1.3
node_roles:
- primary-controller
nova_cpu_pinning_enabled: false
nova_hugepages_enabled: false
swift_zone: '146'
uid: '146'
user_node_name: node-146
node-147:
fqdn: node-147.test.domain.local
name: node-147
network_roles:
admin/pxe: 10.109.15.101
aodh/api: 192.168.0.1
ceilometer/api: 192.168.0.1
ceph/public: 192.168.1.1
@ -206,7 +260,7 @@ network_metadata:
cinder/api: 192.168.0.1
cinder/iscsi: 192.168.1.1
ex: 172.16.0.2
fw-admin: 10.145.0.100
fw-admin: 10.109.15.101
glance/api: 192.168.0.1
glance/glare: 192.168.0.1
heat/api: 192.168.0.1
@ -234,17 +288,17 @@ network_metadata:
swift/api: 192.168.0.1
swift/replication: 192.168.1.1
node_roles:
- primary-controller
- controller
nova_cpu_pinning_enabled: false
nova_hugepages_enabled: false
swift_zone: '750'
uid: '750'
user_node_name: node-750
node-751:
fqdn: node-751.domain.tld
name: node-751
swift_zone: '147'
uid: '147'
user_node_name: node-147
node-148:
fqdn: node-148.test.domain.local
name: node-148
network_roles:
admin/pxe: 10.145.0.101
admin/pxe: 10.109.15.102
aodh/api: 192.168.0.2
ceilometer/api: 192.168.0.2
ceph/public: 192.168.1.2
@ -253,7 +307,7 @@ network_metadata:
cinder/api: 192.168.0.2
cinder/iscsi: 192.168.1.2
ex: 172.16.0.3
fw-admin: 10.145.0.101
fw-admin: 10.109.15.102
glance/api: 192.168.0.2
glance/glare: 192.168.0.2
heat/api: 192.168.0.2
@ -284,56 +338,9 @@ network_metadata:
- controller
nova_cpu_pinning_enabled: false
nova_hugepages_enabled: false
swift_zone: '751'
uid: '751'
user_node_name: node-751
node-752:
fqdn: node-752.domain.tld
name: node-752
network_roles:
admin/pxe: 10.145.0.102
aodh/api: 192.168.0.3
ceilometer/api: 192.168.0.3
ceph/public: 192.168.1.3
ceph/radosgw: 172.16.0.4
ceph/replication: 192.168.1.3
cinder/api: 192.168.0.3
cinder/iscsi: 192.168.1.3
ex: 172.16.0.4
fw-admin: 10.145.0.102
glance/api: 192.168.0.3
glance/glare: 192.168.0.3
heat/api: 192.168.0.3
horizon: 192.168.0.3
ironic/api: 192.168.0.3
keystone/api: 192.168.0.3
management: 192.168.0.3
mgmt/corosync: 192.168.0.3
mgmt/database: 192.168.0.3
mgmt/memcache: 192.168.0.3
mgmt/messaging: 192.168.0.3
mgmt/vip: 192.168.0.3
mongo/db: 192.168.0.3
murano/api: 192.168.0.3
murano/cfapi: 192.168.0.3
neutron/api: 192.168.0.3
neutron/floating: null
neutron/mesh: 192.168.2.3
neutron/private: null
nova/api: 192.168.0.3
nova/migration: 192.168.0.3
public/vip: 172.16.0.4
sahara/api: 192.168.0.3
storage: 192.168.1.3
swift/api: 192.168.0.3
swift/replication: 192.168.1.3
node_roles:
- controller
nova_cpu_pinning_enabled: false
nova_hugepages_enabled: false
swift_zone: '752'
uid: '752'
user_node_name: node-752
swift_zone: '148'
uid: '148'
user_node_name: node-148
vips:
management:
ipaddr: 192.168.0.5
@ -380,7 +387,7 @@ network_scheme:
endpoints:
br-ex:
IP:
- 172.16.0.2/24
- 172.16.0.4/24
gateway: 172.16.0.1
vendor_specific:
provider_gateway: 172.16.0.1
@ -388,18 +395,18 @@ network_scheme:
IP: none
br-fw-admin:
IP:
- 10.145.0.100/24
- 10.109.15.100/24
vendor_specific:
provider_gateway: 10.145.0.1
provider_gateway: 10.109.15.1
br-mesh:
IP:
- 192.168.2.1/24
- 192.168.2.3/24
br-mgmt:
IP:
- 192.168.0.1/24
- 192.168.0.3/24
br-storage:
IP:
- 192.168.1.1/24
- 192.168.1.3/24
interfaces:
enp0s3:
vendor_specific:
@ -790,47 +797,46 @@ node_volumes:
size: 11264
type: lv
nodes:
- fqdn: node-750.domain.tld
internal_address: 192.168.0.1
- fqdn: node-146.test.domain.local
internal_address: 192.168.0.3
internal_netmask: 255.255.255.0
name: node-750
public_address: 172.16.0.2
name: node-146
public_address: 172.16.0.4
public_netmask: 255.255.255.0
role: primary-controller
storage_address: 192.168.1.3
storage_netmask: 255.255.255.0
swift_zone: '146'
uid: '146'
user_node_name: node-146
- fqdn: node-147.test.domain.local
internal_address: 192.168.0.1
internal_netmask: 255.255.255.0
name: node-147
public_address: 172.16.0.2
public_netmask: 255.255.255.0
role: controller
storage_address: 192.168.1.1
storage_netmask: 255.255.255.0
swift_zone: '750'
uid: '750'
user_node_name: node-750
- fqdn: node-751.domain.tld
swift_zone: '147'
uid: '147'
user_node_name: node-147
- fqdn: node-148.test.domain.local
internal_address: 192.168.0.2
internal_netmask: 255.255.255.0
name: node-751
name: node-148
public_address: 172.16.0.3
public_netmask: 255.255.255.0
role: controller
storage_address: 192.168.1.2
storage_netmask: 255.255.255.0
swift_zone: '751'
uid: '751'
user_node_name: node-751
- fqdn: node-752.domain.tld
internal_address: 192.168.0.3
internal_netmask: 255.255.255.0
name: node-752
public_address: 172.16.0.4
public_netmask: 255.255.255.0
role: controller
storage_address: 192.168.1.3
storage_netmask: 255.255.255.0
swift_zone: '752'
uid: '752'
user_node_name: node-752
swift_zone: '148'
uid: '148'
user_node_name: node-148
nova:
db_password: dVxM3nlBe0JziZeF5NIc630X
enable_hugepages: false
db_password: hWAZkudqAeGGhl1SatLfMEC5
state_path: /var/lib/nova
user_password: jGuKfRlMm0q9vn9ZzqbItMI3
user_password: 1zxvrXLlRd4CjKRbmEYbejh2
nova_quota: true
online: true
openstack_version: newton-10.0
@ -842,7 +848,7 @@ operator_user:
label: Operating System Access
weight: 15
name: fueladmin
password: xT8T4DNQ2QqkJFUZodoWREDy
password: d2FKWdMzL5ZrjCxa52Bo3JS5
sudo: 'ALL=(ALL) NOPASSWD: ALL'
plugins: []
private_network_range: 192.168.2.0/24
@ -853,11 +859,11 @@ provision:
/:
container: gzip
format: ext4
uri: http://10.145.0.2:8080/targetimages/env_42_ubuntu_1404_amd64.img.gz
uri: http://10.109.15.2:8080/targetimages/env_17_ubuntu_1404_amd64.img.gz
/boot:
container: gzip
format: ext2
uri: http://10.145.0.2:8080/targetimages/env_42_ubuntu_1404_amd64-boot.img.gz
uri: http://10.109.15.2:8080/targetimages/env_17_ubuntu_1404_amd64-boot.img.gz
metadata:
group: general
label: Provision
@ -979,8 +985,8 @@ public_ssl:
weight: 110
services: false
puppet:
manifests: rsync://10.145.0.2:/puppet/newton-10.0/manifests/
modules: rsync://10.145.0.2:/puppet/newton-10.0/modules/
manifests: rsync://10.109.15.2:/puppet/newton-10.0/manifests/
modules: rsync://10.109.15.2:/puppet/newton-10.0/modules/
puppet_debug: true
quantum: true
quantum_settings:
@ -995,13 +1001,13 @@ quantum_settings:
L3:
use_namespaces: true
database:
passwd: 8sbWW3CaFK76H4RLEpNOsfLd
passwd: AGikUII5cPBFkzlIKuAArThr
default_floating_net: admin_floating_net
default_private_net: admin_internal_net
keystone:
admin_password: LfzRpFDQNKvkaVBLP8ddBpZl
admin_password: qgsijpWEtQOaBnbRJSdjlw5l
metadata:
metadata_proxy_shared_secret: zdLsHUINrwbg8NspxSn7qvx3
metadata_proxy_shared_secret: YgshdIPQ6fuu8qjf0zGK7GeJ
predefined_networks:
admin_floating_net:
L2:
@ -1035,7 +1041,7 @@ quantum_settings:
shared: false
tenant: admin
rabbit:
password: krpm3JNObYWWhDl9VahYaVWs
password: lbGFVr9BdCAdvobuR7rur3up
release:
attributes_metadata:
editable:
@ -1143,6 +1149,49 @@ release:
type: checkbox
value: false
weight: 10
atop:
interval:
description: Interval between the snapshots in seconds
label: Interval between the snapshots
regex:
error: Should be a number of seconds
source: ^[1-9]\d*$
restrictions:
- action: hide
condition: settings:atop.service_enabled.value == false
type: text
value: '20'
weight: 20
metadata:
enabled: true
group: logging
label: Advanced System & Process Monitor (atop)
toggleable: false
weight: 60
rotate:
description: Number of days to keep log files
label: Rotate days
regex:
error: Should be a number of days
source: ^[1-9]\d*$
restrictions:
- action: hide
condition: settings:atop.service_enabled.value == false
type: text
value: '7'
weight: 30
service_enabled:
description: 'NOTE: When enabled, the service may generate logs up to a
gigabyte in size per day.
This should be taken into consideration when determining the correct size
for the log partition.
'
label: Enable atop service
type: checkbox
value: true
weight: 10
cgroups:
metadata:
always_editable: true
@ -1225,6 +1274,18 @@ release:
type: checkbox
value: true
weight: 50
run_ping_checker:
description: Uncheck this box if the public gateway will not be available
or will not respond to ICMP requests to the deployed cluster. If unchecked,
the controllers will not take public gateway availability into account
as part of the cluster health. If the cluster will not have internet
access, you will need to make sure to provide proper offline mirrors for
the deployment to succeed.
group: network
label: Public Gateway is Available
type: checkbox
value: true
weight: 50
task_deploy:
type: hidden
value: true
@ -1645,6 +1706,9 @@ release:
description: Your DNS entries should point to this name. Self-signed certificates
also will use this hostname
label: DNS hostname for public TLS endpoints
regex:
error: Invalid DNS hostname
source: ^[a-zA-Z\d]+[-\.\da-zA-Z]*$
restrictions:
- action: hide
condition: settings:public_ssl.horizon.value == false and settings:public_ssl.services.value
@ -1679,8 +1743,6 @@ release:
Please make sure your Fuel master node has Internet access to the repository
before attempting to create a mirror.
For more details, please refer to the documentation (https://docs.mirantis.com/openstack/fuel/fuel-10.0/operations.html#external-ubuntu-ops).
'
extra_priority: null
type: custom_repo_configuration
@ -1757,11 +1819,70 @@ release:
sudo:
type: hidden
value: 'ALL=(ALL) NOPASSWD: ALL'
ssh:
brute_force_protection:
description: When enabled, the access from all networks (except the provided
ones) will be granted, but the networks will be checked against the brute
force attack.
label: Brute force protection
restrictions:
- action: hide
condition: settings:ssh.security_enabled.value == false
type: checkbox
value: false
weight: 30
metadata:
enabled: true
group: security
label: SSH security
toggleable: false
weight: 120
security_enabled:
description: 'NOTE: When enabled, provide at least one working IP address
(the Fuel Master node IP is already added).
We recommend adding new addresses instead of replacing the provided Fuel
Master node IP.
When disabled (by default), the admin, management, and storage networks
are only allowed to connect to the SSH service.
'
label: Restrict SSH service on network
type: checkbox
value: false
weight: 10
security_networks:
description: IPv4/CIDR address
label: Restrict access to
regex:
error: Invalid IPv4/CIDR address
source: ^(([0-9]|[1-9][0-9]|1[0-9]{2}|2[0-4][0-9]|25[0-5])\.){3}([0-9]|[1-9][0-9]|1[0-9]{2}|2[0-4][0-9]|25[0-5])(\/([0-9]|[1-2][0-9]|3[0-2]))*$
restrictions:
- action: hide
condition: settings:ssh.security_enabled.value == false
type: text_list
value:
- '{settings.MASTER_IP}'
weight: 20
storage:
admin_key:
type: hidden
value:
generator: cephx_key
auth_s3_keystone_ceph:
description: This allows to authenticate S3 requests basing on EC2/S3 credentials
managed by Keystone. Please note that enabling the integration will increase
the latency of S3 requests as well as load on Keystone service. Please
consult with Mirantis Technical Bulletin 27 and Mirantis Support on mitigating
the risks related with load.
label: Enable S3 API Authentication via Keystone in Ceph RadosGW
restrictions:
- action: hide
condition: settings:storage.objects_ceph.value == false
type: checkbox
value: false
weight: 82
bootstrap_osd_key:
type: hidden
value:
@ -1814,6 +1935,9 @@ release:
and Swift API Interfaces. If enabled, this option will prevent Swift from
installing.
label: Ceph RadosGW for objects (Swift API)
restrictions:
- settings:storage.images_ceph.value == false: Ceph RBD for Images should
be selected.
type: checkbox
value: false
weight: 80
@ -2054,6 +2178,12 @@ release:
description: dialog.create_cluster_wizard.compute.qemu_description
label: dialog.create_cluster_wizard.compute.qemu
name: hypervisor:qemu
requires:
- one_of:
items:
- network:neutron:ml2:vlan
- network:neutron:ml2:tun
message: dialog.create_cluster_wizard.compute.qemu_requires_network_backend
weight: 5
- bind:
- settings:common.use_vcenter.value
@ -2063,8 +2193,16 @@ release:
label: dialog.create_cluster_wizard.compute.vcenter
name: hypervisor:vmware
requires:
- message: dialog.create_cluster_wizard.compute.vcenter_warning
name: hypervisor:qemu
- one_of:
items:
- hypervisor:qemu
message: dialog.create_cluster_wizard.compute.vcenter_warning
- one_of:
items:
- network:neutron:ml2:dvs
- network:neutron:ml2:nsx
message: dialog.create_cluster_wizard.compute.vcenter_requires_network_backend
message_invalid: dialog.create_cluster_wizard.compute.vcenter_requires_network_plugins
weight: 15
- compatible:
- name: hypervisor:*
@ -2091,7 +2229,9 @@ release:
label: common.network.neutron_vlan
name: network:neutron:ml2:vlan
requires:
- name: network:neutron:core:ml2
- one_of:
items:
- network:neutron:core:ml2
weight: 5
- bind:
- - cluster:net_provider
@ -2112,7 +2252,9 @@ release:
label: common.network.neutron_tun
name: network:neutron:ml2:tun
requires:
- name: network:neutron:core:ml2
- one_of:
items:
- network:neutron:core:ml2
weight: 10
- bind:
- settings:storage.volumes_lvm.value
@ -2360,6 +2502,7 @@ release:
restrictions:
- action: hide
condition: settings:common.use_vcenter.value == false
message: VMware vCenter not enabled for cluster
weight: 40
compute:
description: A Compute node creates, manages, and terminates virtual machine
@ -2389,10 +2532,12 @@ release:
restrictions:
- action: hide
condition: settings:common.use_vcenter.value == false
message: VMware vCenter not enabled for cluster
weight: 90
controller:
conflicts:
- compute
- ceph-osd
description: The Controller initiates orchestration activities and provides
an external API. Other components like Glance (image storage), Keystone (identity
management), Horizon (OpenStack dashboard) and Nova-Scheduler are installed
@ -2464,6 +2609,7 @@ release:
restrictions:
- action: hide
condition: not ('advanced' in version:feature_groups)
message: Advanced feature should be enabled in feature groups
weight: 80
state: available
version: newton-10.0
@ -2635,7 +2781,7 @@ repo_setup:
section: main restricted
suite: mos10.0
type: deb
uri: http://10.145.0.2:8080/newton-10.0/ubuntu/x86_64
uri: http://10.109.15.2:8080/newton-10.0/ubuntu/x86_64
- name: mos-updates
priority: 1050
section: main restricted
@ -2659,14 +2805,15 @@ repo_setup:
section: main restricted
suite: auxiliary
type: deb
uri: http://10.145.0.2:8080/newton-10.0/ubuntu/auxiliary
uri: http://10.109.15.2:8080/newton-10.0/ubuntu/auxiliary
resume_guests_state_on_host_boot: true
roles:
- primary-controller
run_ping_checker: true
sahara:
db_password: DRapFQcmeHvueGCqssEIa2bQ
db_password: CM60aYlmA5spqiqDApaby7xR
enabled: false
user_password: o6fkFsUDNDhc4YqRd0T9gOJE
user_password: lB1yDC38IKmz6M557UcjJfAg
service_user:
homedir: /var/lib/fuel
metadata:
@ -2677,22 +2824,34 @@ service_user:
condition: 'true'
weight: 10
name: fuel
password: kBx8RG4db3zQAzqVKh44Gm4d
password: cPYnLS5PfIUite7eBpjSrI9z
root_password: r00tme
sudo: 'ALL=(ALL) NOPASSWD: ALL'
ssh:
brute_force_protection: false
metadata:
enabled: true
group: security
label: SSH security
toggleable: false
weight: 120
security_enabled: false
security_networks:
- 10.109.15.2
status: discover
storage:
admin_key: AQCCekhXAAAAABAAXlxgNtLXFTdaF6nR2MGOaw==
bootstrap_osd_key: AQCCekhXAAAAABAASnyCLDjd1XWTH106pH9TLQ==
admin_key: AQBrCKNXAAAAABAAI3edn6qeFUQbO0ootzuOuw==
auth_s3_keystone_ceph: false
bootstrap_osd_key: AQBrCKNXAAAAABAAwsTYwSQzfIUqx1kM0HKZGQ==
ephemeral_ceph: false
fsid: e352376f-e4bd-43c1-bf8f-0db2061497c2
fsid: c662c281-5820-4cde-824e-5f0ed024dad3
images_ceph: false
images_vcenter: false
metadata:
group: storage
label: Storage Backends
weight: 60
mon_key: AQCCekhXAAAAABAAtv9DdUBCre3ZDwrWSltHWA==
mon_key: AQBrCKNXAAAAABAASQ1JTHUn7DdvlexE1FdFMA==
objects_ceph: false
osd_pool_size: '3'
per_pool_pg_nums:
@ -2703,13 +2862,13 @@ storage:
images: 128
volumes: 128
pg_num: 128
radosgw_key: AQCCekhXAAAAABAA8QOMIJfsNC+cY9e66M0xrA==
radosgw_key: AQBrCKNXAAAAABAADvz5+lOy2LLWhWAfqr+Urw==
volumes_block_device: false
volumes_ceph: false
volumes_lvm: true
storage_network_range: 192.168.1.0/24
swift:
user_password: UTky8v3RK3cq3CQIJ3N8hlHA
user_password: xNJ7vy9MIakC8RVpKaBrrdc3
syslog:
metadata:
enabled: false
@ -2731,10 +2890,10 @@ test_vm_image:
os_name: cirros
properties: {}
public: 'true'
uid: '750'
uid: '146'
use_cow_images: true
use_vcenter: false
user_node_name: node-750
user_node_name: node-146
vms_conf: []
workloads_collector:
create_user: false
@ -2746,6 +2905,6 @@ workloads_collector:
- action: hide
condition: 'true'
weight: 10
password: T2Feby0Vtz9DM6F4IDwjMOz6
password: tBJ3WHNvxQRwqnIbuKZIu9k0
tenant: services
username: fuel_stats_user

File diff suppressed because it is too large Load Diff

File diff suppressed because it is too large Load Diff

File diff suppressed because it is too large Load Diff

File diff suppressed because it is too large Load Diff

File diff suppressed because it is too large Load Diff

File diff suppressed because it is too large Load Diff

File diff suppressed because it is too large Load Diff

File diff suppressed because it is too large Load Diff

View File

@ -8,18 +8,28 @@ access:
tenant: admin
user: admin
aodh:
db_password: i8KOFfbOEwBzXI6GQKkGlEcH
user_password: i1l0ol7WwO2JTb2LMjMAVtIM
db_password: FXF6Px9J9eA6NFaZoy1OfMNH
user_password: teULXJxSJ7HOnsYEmktUP5LV
atop:
interval: '20'
metadata:
enabled: true
group: logging
label: Advanced System & Process Monitor (atop)
toggleable: false
weight: 60
rotate: '7'
service_enabled: true
auth_key: ''
auto_assign_floating_ip: false
base_syslog:
syslog_port: '514'
syslog_server: 10.145.0.2
syslog_server: 10.109.15.2
ceilometer:
db_password: r70muo2HLVFyQ6VYJOTblv3A
db_password: 8WWBNbrGL4quFkRcKpjCgIgl
enabled: false
metering_secret: JOuVQwYcAnAyxnGkZuyCxRtH
user_password: aQroaCXsreFXRlnP4IcSvwZ5
metering_secret: zW6KoXO6xoe7nibuYTh7SKYF
user_password: mj1qfoUtoLZP3THUbqWkgcn2
cgroups:
metadata:
always_editable: true
@ -30,9 +40,9 @@ cgroups:
condition: 'true'
weight: 90
cinder:
db_password: GfKpNGnHhEGepnxOM7I5IHfe
fixed_key: b6555e7c5ec29b1bc08094dd9dcedbb052aea7f70c3d20d3c724832591af5ebb
user_password: 8OLYhpda5VxuUpn0DBz797Js
db_password: SlTeEYsWFbqTIteuKoz8ZF40
fixed_key: a2de45f866f9ab1432678e310cf8e4c9ab7ad811593a4a86768209fad8dc42f6
user_password: QmQnxm11f7CStHAOjJTzrBox
cluster:
changes:
- name: attributes
@ -42,20 +52,20 @@ cluster:
- name: networks
node_id: null
- name: interfaces
node_id: 720
node_id: 116
- name: disks
node_id: 720
node_id: 116
- name: interfaces
node_id: 721
node_id: 117
- name: disks
node_id: 721
node_id: 117
- name: interfaces
node_id: 722
node_id: 118
- name: disks
node_id: 722
node_id: 118
components: []
fuel_version: '10.0'
id: 39
id: 14
is_customized: false
is_locked: false
mode: ha_compact
@ -88,12 +98,11 @@ corosync:
debug: false
deployed_before:
value: false
deployment_id: 39
deployment_id: 14
deployment_mode: ha_compact
dpdk: {}
external_dns:
dns_list:
- 10.145.0.1
- 10.109.15.1
metadata:
group: network
label: Host OS DNS Servers
@ -119,31 +128,29 @@ external_ntp:
label: Host OS NTP Servers
weight: 40
ntp_list:
- 0.fuel.pool.ntp.org
- 1.fuel.pool.ntp.org
- 2.fuel.pool.ntp.org
- 10.109.15.1
fail_if_error: true
fqdn: node-720.domain.tld
fqdn: node-116.test.domain.local
fuel_version: '10.0'
glance:
db_password: fPVxzLxPrH19DaBgMmcLtxxq
db_password: KCIY8EZAbaBGE9D4Z62hJtGM
image_cache_max_size: '389537175961'
user_password: j2ux1QIgyEinlfmvAmFKK7ZB
user_password: gEbPfO9oqNxp6uIsousVFWMV
glance_glare:
user_password: X8CS1VLqnYtDUMO3zceNQg7G
user_password: diVFcH2camn0M7C7u6UV0lDI
heat:
auth_encryption_key: 98eabc811a5062b3d018223b08c26493
db_password: AOOxiQgvtvIyjzMSEFlYaiJs
auth_encryption_key: de170dc87ffd7e206de8ed5dec842e76
db_password: KiteErkstb3c66Xs9xWyW7E7
enabled: true
rabbit_password: afrRPPktAkvheP9GaLDMEtMF
user_password: CenZr0lu5477YK3iVq7ixSrn
rabbit_password: TCIyD8yoUYnp5UGDdLM3ev4W
user_password: tVKD5WGB5otsF681ibxXU9ic
horizon:
secret_key: 5099a3afbcb11b3faf7a5dcca255f8588e7954c67885e9403ead78325baf56c6
secret_key: 1d0083299fe63b6bd13729c5df51e4da467cda0b2bbb90faa28662c2dc2381e0
ironic:
db_password: mJx63Q1vXa7cuwWvqlkir2c2
db_password: 30lSPp17PSJyYh8ILaoanQYl
enabled: false
swift_tempurl_key: ExTEWIrB5XYszJVTP3KJJbN8
user_password: SUuSZ6htg4Y54pA1Yq1QzmDB
swift_tempurl_key: b51bqh0v3Qz8qxMijOpIqPFs
user_password: CwMIaqH1BiqtPAh8lRXlf4gp
kernel_params:
kernel: console=tty0 net.ifnames=0 biosdevname=0 rootdelay=90 nomodeset
metadata:
@ -151,12 +158,12 @@ kernel_params:
label: Kernel parameters
weight: 60
keystone:
admin_token: 0tBtnk0hfhaHxeJgrqNICQLf
db_password: KI0iD9iIevQzaviDyqyAkpO1
last_controller: node-722
admin_token: ITnlVam8zsbN9fiDIsqG0Ryi
db_password: 7jzNnjVRaNqtE8kccp674LAU
last_controller: node-118
libvirt_type: qemu
management_network_range: 192.168.0.0/24
master_ip: 10.145.0.2
master_ip: 10.109.15.2
metadata:
label: Common
weight: 10
@ -168,15 +175,15 @@ mp:
- point: '2'
weight: '2'
murano:
db_password: uEVoHfM8UIKuZ7rOetIs1Vvd
db_password: Uepk72CFQa4kxFRXEVh9Awc1
enabled: false
rabbit_password: 6JQ6YAzOIlEo7DwoOFgwY9Xc
user_password: 9otEJIj1zFxJiIkZs6LSgQGy
rabbit_password: 94n4ycFtXUZXdG5aWdLYPdul
user_password: SCrct72Vtz7GbnCJHAhgPcKO
murano-cfapi:
db_password: yZwOObXqNU8CHODDnAgU5yNn
db_password: S5bx5GBGoU6bL85NYNkCjaOO
enabled: false
rabbit_password: RLTvJtpCLsyVjMYnVgBYdfeb
user_password: ax24ovcrh55oogFNnR7HeXSS
rabbit_password: wk40D9sBH8efPSPNBVX5fu5g
user_password: HqLATA4Ear1ReLuGtLZ4ZlCv
murano_settings:
metadata:
group: openstack_services
@ -189,61 +196,15 @@ murano_settings:
murano_glance_artifacts_plugin: true
murano_repo_url: http://storage.apps.openstack.org/
mysql:
root_password: P8X87fBVQ57yEFSOQs6F6GXW
wsrep_password: o8y08DxiG3iD3HbcA0PIaZzs
root_password: i8l0eneBEHwo0rJnFh4GXWaW
wsrep_password: z6GfzHQo6lHxnXqEUrKJZOHX
network_metadata:
nodes:
node-720:
fqdn: node-720.domain.tld
name: node-720
node-116:
fqdn: node-116.test.domain.local
name: node-116
network_roles:
admin/pxe: 10.145.0.100
aodh/api: 192.168.0.1
ceilometer/api: 192.168.0.1
ceph/public: 192.168.1.1
ceph/radosgw: 172.16.0.2
ceph/replication: 192.168.1.1
cinder/api: 192.168.0.1
cinder/iscsi: 192.168.1.1
ex: 172.16.0.2
fw-admin: 10.145.0.100
glance/api: 192.168.0.1
glance/glare: 192.168.0.1
heat/api: 192.168.0.1
horizon: 192.168.0.1
ironic/api: 192.168.0.1
keystone/api: 192.168.0.1
management: 192.168.0.1
mgmt/corosync: 192.168.0.1
mgmt/database: 192.168.0.1
mgmt/memcache: 192.168.0.1
mgmt/messaging: 192.168.0.1
mgmt/vip: 192.168.0.1
mongo/db: 192.168.0.1
murano/api: 192.168.0.1
murano/cfapi: 192.168.0.1
neutron/api: 192.168.0.1
neutron/floating: null
neutron/private: null
nova/api: 192.168.0.1
nova/migration: 192.168.0.1
public/vip: 172.16.0.2
sahara/api: 192.168.0.1
storage: 192.168.1.1
swift/api: 192.168.0.1
swift/replication: 192.168.1.1
node_roles:
- primary-controller
nova_cpu_pinning_enabled: false
nova_hugepages_enabled: false
swift_zone: '720'
uid: '720'
user_node_name: node-720
node-721:
fqdn: node-721.domain.tld
name: node-721
network_roles:
admin/pxe: 10.145.0.101
admin/pxe: 10.109.15.100
aodh/api: 192.168.0.2
ceilometer/api: 192.168.0.2
ceph/public: 192.168.1.2
@ -252,7 +213,7 @@ network_metadata:
cinder/api: 192.168.0.2
cinder/iscsi: 192.168.1.2
ex: 172.16.0.3
fw-admin: 10.145.0.101
fw-admin: 10.109.15.100
glance/api: 192.168.0.2
glance/glare: 192.168.0.2
heat/api: 192.168.0.2
@ -279,17 +240,17 @@ network_metadata:
swift/api: 192.168.0.2
swift/replication: 192.168.1.2
node_roles:
- controller
- primary-controller
nova_cpu_pinning_enabled: false
nova_hugepages_enabled: false
swift_zone: '721'
uid: '721'
user_node_name: node-721
node-722:
fqdn: node-722.domain.tld
name: node-722
swift_zone: '116'
uid: '116'
user_node_name: node-116
node-117:
fqdn: node-117.test.domain.local
name: node-117
network_roles:
admin/pxe: 10.145.0.102
admin/pxe: 10.109.15.101
aodh/api: 192.168.0.3
ceilometer/api: 192.168.0.3
ceph/public: 192.168.1.3
@ -298,7 +259,7 @@ network_metadata:
cinder/api: 192.168.0.3
cinder/iscsi: 192.168.1.3
ex: 172.16.0.4
fw-admin: 10.145.0.102
fw-admin: 10.109.15.101
glance/api: 192.168.0.3
glance/glare: 192.168.0.3
heat/api: 192.168.0.3
@ -328,9 +289,55 @@ network_metadata:
- controller
nova_cpu_pinning_enabled: false
nova_hugepages_enabled: false
swift_zone: '722'
uid: '722'
user_node_name: node-722
swift_zone: '117'
uid: '117'
user_node_name: node-117
node-118:
fqdn: node-118.test.domain.local
name: node-118
network_roles:
admin/pxe: 10.109.15.102
aodh/api: 192.168.0.1
ceilometer/api: 192.168.0.1
ceph/public: 192.168.1.1
ceph/radosgw: 172.16.0.2
ceph/replication: 192.168.1.1
cinder/api: 192.168.0.1
cinder/iscsi: 192.168.1.1
ex: 172.16.0.2
fw-admin: 10.109.15.102
glance/api: 192.168.0.1
glance/glare: 192.168.0.1
heat/api: 192.168.0.1
horizon: 192.168.0.1
ironic/api: 192.168.0.1
keystone/api: 192.168.0.1
management: 192.168.0.1
mgmt/corosync: 192.168.0.1
mgmt/database: 192.168.0.1
mgmt/memcache: 192.168.0.1
mgmt/messaging: 192.168.0.1
mgmt/vip: 192.168.0.1
mongo/db: 192.168.0.1
murano/api: 192.168.0.1
murano/cfapi: 192.168.0.1
neutron/api: 192.168.0.1
neutron/floating: null
neutron/private: null
nova/api: 192.168.0.1
nova/migration: 192.168.0.1
public/vip: 172.16.0.2
sahara/api: 192.168.0.1
storage: 192.168.1.1
swift/api: 192.168.0.1
swift/replication: 192.168.1.1
node_roles:
- controller
nova_cpu_pinning_enabled: false
nova_hugepages_enabled: false
swift_zone: '118'
uid: '118'
user_node_name: node-118
vips:
management:
ipaddr: 192.168.0.5
@ -377,7 +384,7 @@ network_scheme:
endpoints:
br-ex:
IP:
- 172.16.0.2/24
- 172.16.0.3/24
gateway: 172.16.0.1
vendor_specific:
provider_gateway: 172.16.0.1
@ -385,17 +392,17 @@ network_scheme:
IP: none
br-fw-admin:
IP:
- 10.145.0.100/24
- 10.109.15.100/24
vendor_specific:
provider_gateway: 10.145.0.1
provider_gateway: 10.109.15.1
br-mgmt:
IP:
- 192.168.0.1/24
- 192.168.0.2/24
br-prv:
IP: none
br-storage:
IP:
- 192.168.1.1/24
- 192.168.1.2/24
interfaces:
enp0s3:
vendor_specific:
@ -790,47 +797,46 @@ node_volumes:
size: 11264
type: lv
nodes:
- fqdn: node-720.domain.tld
internal_address: 192.168.0.1
internal_netmask: 255.255.255.0
name: node-720
public_address: 172.16.0.2
public_netmask: 255.255.255.0
role: primary-controller
storage_address: 192.168.1.1
storage_netmask: 255.255.255.0
swift_zone: '720'
uid: '720'
user_node_name: node-720
- fqdn: node-721.domain.tld
- fqdn: node-116.test.domain.local
internal_address: 192.168.0.2
internal_netmask: 255.255.255.0
name: node-721
name: node-116
public_address: 172.16.0.3
public_netmask: 255.255.255.0
role: controller
role: primary-controller
storage_address: 192.168.1.2
storage_netmask: 255.255.255.0
swift_zone: '721'
uid: '721'
user_node_name: node-721
- fqdn: node-722.domain.tld
swift_zone: '116'
uid: '116'
user_node_name: node-116
- fqdn: node-117.test.domain.local
internal_address: 192.168.0.3
internal_netmask: 255.255.255.0
name: node-722
name: node-117
public_address: 172.16.0.4
public_netmask: 255.255.255.0
role: controller
storage_address: 192.168.1.3
storage_netmask: 255.255.255.0
swift_zone: '722'
uid: '722'
user_node_name: node-722
swift_zone: '117'
uid: '117'
user_node_name: node-117
- fqdn: node-118.test.domain.local
internal_address: 192.168.0.1
internal_netmask: 255.255.255.0
name: node-118
public_address: 172.16.0.2
public_netmask: 255.255.255.0
role: controller
storage_address: 192.168.1.1
storage_netmask: 255.255.255.0
swift_zone: '118'
uid: '118'
user_node_name: node-118
nova:
db_password: TE3XBlad3tJiLwSHWZK29Src
enable_hugepages: false
db_password: tauY2OasaI1u0MePS4qXtECo
state_path: /var/lib/nova
user_password: z496UA0CzhBxDqweygotaDu9
user_password: R3BDhK39fuKBm8qZUZqqoQTi
nova_quota: false
online: true
openstack_version: newton-10.0
@ -842,7 +848,7 @@ operator_user:
label: Operating System Access
weight: 15
name: fueladmin
password: WkdrN072t7xBq5RaJEnnybq7
password: IhHphZ1fZeWbiZZnF0p6lpDD
sudo: 'ALL=(ALL) NOPASSWD: ALL'
plugins: []
propagate_task_deploy: false
@ -852,11 +858,11 @@ provision:
/:
container: gzip
format: ext4
uri: http://10.145.0.2:8080/targetimages/env_39_ubuntu_1404_amd64.img.gz
uri: http://10.109.15.2:8080/targetimages/env_14_ubuntu_1404_amd64.img.gz
/boot:
container: gzip
format: ext2
uri: http://10.145.0.2:8080/targetimages/env_39_ubuntu_1404_amd64-boot.img.gz
uri: http://10.109.15.2:8080/targetimages/env_14_ubuntu_1404_amd64-boot.img.gz
metadata:
group: general
label: Provision
@ -978,8 +984,8 @@ public_ssl:
weight: 110
services: false
puppet:
manifests: rsync://10.145.0.2:/puppet/newton-10.0/manifests/
modules: rsync://10.145.0.2:/puppet/newton-10.0/modules/
manifests: rsync://10.109.15.2:/puppet/newton-10.0/manifests/
modules: rsync://10.109.15.2:/puppet/newton-10.0/modules/
puppet_debug: true
quantum: true
quantum_settings:
@ -996,13 +1002,13 @@ quantum_settings:
L3:
use_namespaces: true
database:
passwd: l1wSKmAcxMB2RATKNk4pMkrC
passwd: uX5iDoFH8iV6GEDAqr9akRy9
default_floating_net: admin_floating_net
default_private_net: admin_internal_net
keystone:
admin_password: L5KaR9Zlnsu7CKuVSxmbu7kt
admin_password: MGu7lBUyLwqDqXfFmvYvDI9g
metadata:
metadata_proxy_shared_secret: AamyHJAbr6rEeCwt4pVJDH3B
metadata_proxy_shared_secret: LJuUHa20bFn05CMBM9qfmuIh
predefined_networks:
admin_floating_net:
L2:
@ -1036,7 +1042,7 @@ quantum_settings:
shared: false
tenant: admin
rabbit:
password: lscsRAvNz0ctZwvT2xuDnNB2
password: OE2WXJcBoKufhNapKQ2Qa2Rd
release:
attributes_metadata:
editable:
@ -1144,6 +1150,49 @@ release:
type: checkbox
value: false
weight: 10
atop:
interval:
description: Interval between the snapshots in seconds
label: Interval between the snapshots
regex:
error: Should be a number of seconds
source: ^[1-9]\d*$
restrictions:
- action: hide
condition: settings:atop.service_enabled.value == false
type: text
value: '20'
weight: 20
metadata:
enabled: true
group: logging
label: Advanced System & Process Monitor (atop)
toggleable: false
weight: 60
rotate:
description: Number of days to keep log files
label: Rotate days
regex:
error: Should be a number of days
source: ^[1-9]\d*$
restrictions:
- action: hide
condition: settings:atop.service_enabled.value == false
type: text
value: '7'
weight: 30
service_enabled:
description: 'NOTE: When enabled, the service may generate logs up to a
gigabyte in size per day.
This should be taken into consideration when determining the correct size
for the log partition.
'
label: Enable atop service
type: checkbox
value: true
weight: 10
cgroups:
metadata:
always_editable: true
@ -1226,6 +1275,18 @@ release:
type: checkbox
value: true
weight: 50
run_ping_checker:
description: Uncheck this box if the public gateway will not be available
or will not respond to ICMP requests to the deployed cluster. If unchecked,
the controllers will not take public gateway availability into account
as part of the cluster health. If the cluster will not have internet
access, you will need to make sure to provide proper offline mirrors for
the deployment to succeed.
group: network
label: Public Gateway is Available
type: checkbox
value: true
weight: 50
task_deploy:
type: hidden
value: true
@ -1646,6 +1707,9 @@ release:
description: Your DNS entries should point to this name. Self-signed certificates
also will use this hostname
label: DNS hostname for public TLS endpoints
regex:
error: Invalid DNS hostname
source: ^[a-zA-Z\d]+[-\.\da-zA-Z]*$
restrictions:
- action: hide
condition: settings:public_ssl.horizon.value == false and settings:public_ssl.services.value
@ -1680,8 +1744,6 @@ release:
Please make sure your Fuel master node has Internet access to the repository
before attempting to create a mirror.
For more details, please refer to the documentation (https://docs.mirantis.com/openstack/fuel/fuel-10.0/operations.html#external-ubuntu-ops).
'
extra_priority: null
type: custom_repo_configuration
@ -1758,11 +1820,70 @@ release:
sudo:
type: hidden
value: 'ALL=(ALL) NOPASSWD: ALL'
ssh:
brute_force_protection:
description: When enabled, the access from all networks (except the provided
ones) will be granted, but the networks will be checked against the brute
force attack.
label: Brute force protection
restrictions:
- action: hide
condition: settings:ssh.security_enabled.value == false
type: checkbox
value: false
weight: 30
metadata:
enabled: true
group: security
label: SSH security
toggleable: false
weight: 120
security_enabled:
description: 'NOTE: When enabled, provide at least one working IP address
(the Fuel Master node IP is already added).
We recommend adding new addresses instead of replacing the provided Fuel
Master node IP.
When disabled (by default), the admin, management, and storage networks
are only allowed to connect to the SSH service.
'
label: Restrict SSH service on network
type: checkbox
value: false
weight: 10
security_networks:
description: IPv4/CIDR address
label: Restrict access to
regex:
error: Invalid IPv4/CIDR address
source: ^(([0-9]|[1-9][0-9]|1[0-9]{2}|2[0-4][0-9]|25[0-5])\.){3}([0-9]|[1-9][0-9]|1[0-9]{2}|2[0-4][0-9]|25[0-5])(\/([0-9]|[1-2][0-9]|3[0-2]))*$
restrictions:
- action: hide
condition: settings:ssh.security_enabled.value == false
type: text_list
value:
- '{settings.MASTER_IP}'
weight: 20
storage:
admin_key:
type: hidden
value:
generator: cephx_key
auth_s3_keystone_ceph:
description: This allows to authenticate S3 requests basing on EC2/S3 credentials
managed by Keystone. Please note that enabling the integration will increase
the latency of S3 requests as well as load on Keystone service. Please
consult with Mirantis Technical Bulletin 27 and Mirantis Support on mitigating
the risks related with load.
label: Enable S3 API Authentication via Keystone in Ceph RadosGW
restrictions:
- action: hide
condition: settings:storage.objects_ceph.value == false
type: checkbox
value: false
weight: 82
bootstrap_osd_key:
type: hidden
value:
@ -1815,6 +1936,9 @@ release:
and Swift API Interfaces. If enabled, this option will prevent Swift from
installing.
label: Ceph RadosGW for objects (Swift API)
restrictions:
- settings:storage.images_ceph.value == false: Ceph RBD for Images should
be selected.
type: checkbox
value: false
weight: 80
@ -2055,6 +2179,12 @@ release:
description: dialog.create_cluster_wizard.compute.qemu_description
label: dialog.create_cluster_wizard.compute.qemu
name: hypervisor:qemu
requires:
- one_of:
items:
- network:neutron:ml2:vlan
- network:neutron:ml2:tun
message: dialog.create_cluster_wizard.compute.qemu_requires_network_backend
weight: 5
- bind:
- settings:common.use_vcenter.value
@ -2064,8 +2194,16 @@ release:
label: dialog.create_cluster_wizard.compute.vcenter
name: hypervisor:vmware
requires:
- message: dialog.create_cluster_wizard.compute.vcenter_warning
name: hypervisor:qemu
- one_of:
items:
- hypervisor:qemu
message: dialog.create_cluster_wizard.compute.vcenter_warning
- one_of:
items:
- network:neutron:ml2:dvs
- network:neutron:ml2:nsx
message: dialog.create_cluster_wizard.compute.vcenter_requires_network_backend
message_invalid: dialog.create_cluster_wizard.compute.vcenter_requires_network_plugins
weight: 15
- compatible:
- name: hypervisor:*
@ -2092,7 +2230,9 @@ release:
label: common.network.neutron_vlan
name: network:neutron:ml2:vlan
requires:
- name: network:neutron:core:ml2
- one_of:
items:
- network:neutron:core:ml2
weight: 5
- bind:
- - cluster:net_provider
@ -2113,7 +2253,9 @@ release:
label: common.network.neutron_tun
name: network:neutron:ml2:tun
requires:
- name: network:neutron:core:ml2
- one_of:
items:
- network:neutron:core:ml2
weight: 10
- bind:
- settings:storage.volumes_lvm.value
@ -2361,6 +2503,7 @@ release:
restrictions:
- action: hide
condition: settings:common.use_vcenter.value == false
message: VMware vCenter not enabled for cluster
weight: 40
compute:
description: A Compute node creates, manages, and terminates virtual machine
@ -2390,10 +2533,12 @@ release:
restrictions:
- action: hide
condition: settings:common.use_vcenter.value == false
message: VMware vCenter not enabled for cluster
weight: 90
controller:
conflicts:
- compute
- ceph-osd
description: The Controller initiates orchestration activities and provides
an external API. Other components like Glance (image storage), Keystone (identity
management), Horizon (OpenStack dashboard) and Nova-Scheduler are installed
@ -2465,6 +2610,7 @@ release:
restrictions:
- action: hide
condition: not ('advanced' in version:feature_groups)
message: Advanced feature should be enabled in feature groups
weight: 80
state: available
version: newton-10.0
@ -2636,7 +2782,7 @@ repo_setup:
section: main restricted
suite: mos10.0
type: deb
uri: http://10.145.0.2:8080/newton-10.0/ubuntu/x86_64
uri: http://10.109.15.2:8080/newton-10.0/ubuntu/x86_64
- name: mos-updates
priority: 1050
section: main restricted
@ -2660,14 +2806,15 @@ repo_setup:
section: main restricted
suite: auxiliary
type: deb
uri: http://10.145.0.2:8080/newton-10.0/ubuntu/auxiliary
uri: http://10.109.15.2:8080/newton-10.0/ubuntu/auxiliary
resume_guests_state_on_host_boot: true
roles:
- primary-controller
run_ping_checker: true
sahara:
db_password: p2MdEtao9p1VNhmSw9JBx7jt
db_password: UF4ZV4PTbonSWqt7680pZ0rL
enabled: false
user_password: yoMnSIl4c7Hoh5wKaU3VnJ6e
user_password: 2LoKysurI447q2vGNsXfzSPE
service_user:
homedir: /var/lib/fuel
metadata:
@ -2678,22 +2825,34 @@ service_user:
condition: 'true'
weight: 10
name: fuel
password: 5dn5GAQqwOJjgvdLnB5mNuwJ
password: OEUDOaOpAQMyUBCsfhBQTA7f
root_password: r00tme
sudo: 'ALL=(ALL) NOPASSWD: ALL'
ssh:
brute_force_protection: false
metadata:
enabled: true
group: security
label: SSH security
toggleable: false
weight: 120
security_enabled: false
security_networks:
- 10.109.15.2
status: discover
storage:
admin_key: AQBTeUhXAAAAABAAdwwOwBYXZat8EUoTv+TNzQ==
bootstrap_osd_key: AQBTeUhXAAAAABAAZkv8WHWP0hSli2zP+A+yKw==
admin_key: AQBBB6NXAAAAABAA6In/2HbEevOwWwgfsS6dMg==
auth_s3_keystone_ceph: false
bootstrap_osd_key: AQBBB6NXAAAAABAAOAFmN02NZAnFPM0KKSyB2Q==
ephemeral_ceph: false
fsid: 99086d2b-16fa-4e30-b218-0478a6f4ca2f
fsid: a64309fb-4fec-4d94-a0c0-01da60c8763f
images_ceph: false
images_vcenter: false
metadata:
group: storage
label: Storage Backends
weight: 60
mon_key: AQBTeUhXAAAAABAAscRrAAtn0TMlZA6+mBsW5g==
mon_key: AQBBB6NXAAAAABAAVkaMThSuTJpEvr4NQQhz5w==
objects_ceph: false
osd_pool_size: '3'
per_pool_pg_nums:
@ -2704,13 +2863,13 @@ storage:
images: 128
volumes: 128
pg_num: 128
radosgw_key: AQBTeUhXAAAAABAAKA62hWh72YcjIdy0TSSAhw==
radosgw_key: AQBBB6NXAAAAABAACyHSjzgMrrG6dpiJoheqXQ==
volumes_block_device: false
volumes_ceph: false
volumes_lvm: true
storage_network_range: 192.168.1.0/24
swift:
user_password: oVBtyqIw3KXicx1jCNdhByCS
user_password: oZteugntx6IdeP40a6VOdzO0
syslog:
metadata:
enabled: false
@ -2732,10 +2891,10 @@ test_vm_image:
os_name: cirros
properties: {}
public: 'true'
uid: '720'
uid: '116'
use_cow_images: true
use_vcenter: false
user_node_name: node-720
user_node_name: node-116
vms_conf: []
workloads_collector:
create_user: false
@ -2747,6 +2906,6 @@ workloads_collector:
- action: hide
condition: 'true'
weight: 10
password: ISAUvQnpDAngw8QfiEr3lQ2i
password: 6jrQREZVjMWvFcEdhmk0evka
tenant: services
username: fuel_stats_user

View File

@ -51,6 +51,7 @@ function enable_ceph {
attr["editable"]["storage"]["ephemeral_ceph"]["value"] = true
attr["editable"]["storage"]["volumes_lvm"]["value"] = false
attr["editable"]["storage"]["osd_pool_size"]["value"] = "2"
attr["editable"]["storage"]["auth_s3_keystone_ceph"]["value"] = true
File.open(ARGV[0], "w").write(attr.to_yaml)' "cluster_$1/attributes.yaml"
fuel env --attributes --env $1 --upload
rm -rf "cluster_$1"