LATEST VERSION: 1.10 - CHANGELOG
Pivotal Cloud Foundry v1.9

Provisioning the OpenStack Infrastructure

Page last updated:

This guide describes how to provision the OpenStack infrastructure that you need to install Pivotal Cloud Foundry (PCF) OpenStack. This document uses Mirantis Openstack. Use this topic when Installing Pivotal Cloud Foundry on OpenStack.

After completing this procedure, complete all of the steps in the Configuring Ops Manager Director after Deploying PCF on OpenStack and Installing Elastic Runtime after Deploying PCF on OpenStack topics.

Step 1: Log In to the OpenStack Horizon Dashboard

  1. Log in to the OpenStack Horizon Dashboard.

    Log in

Step 2: Configure Security

  1. In the left navigation of your OpenStack dashboard, click Project > Compute > Access & Security.

  2. Select the Key Pairs tab on the Access & Security page.

  3. Click Create Key Pair.

  4. Enter a Key Pair Name and click Create Key Pair.

    Create key pair

  5. In the left navigation, click Access & Security to refresh the page.

  6. Select the Security Groups tab. Click Create Security Group and create a group with the following properties:

    • Name: opsmanager
    • Description: Ops Manager

    Create security

  7. Select the checkbox for the opsmanager Security Group and click Manage Rules.

    Manage security rules

  8. Add the access rules for HTTP, HTTPS, and SSH as shown in the table below. The rules with ‘opsmanager’ in the Remote column have restricted access to that particular Security Group.

    Note: Adjust the remote sources as necessary for your own security compliance. Pivotal recommends limiting remote access to Ops Manager to IP ranges within your organization.

    Direction Ether Type IP Protocol Port Range Remote
    Ingress IPv4 TCP 22 (SSH) 0.0.0.0/0 (CIDR)
    Ingress IPv4 TCP 80 (HTTP) 0.0.0.0/0 (CIDR)
    Ingress IPv4 TCP 443 (HTTPS) 0.0.0.0/0 (CIDR)
    Ingress IPv4 TCP 25555 0.0.0.0/0 (CIDR)
    Ingress IPv4 TCP 1-65535 opsmanager
    Ingress IPv4 UDP 1-65535 opsmanager

Step 3: Create Ops Manager Image

You can create the Ops Manager image in OpenStack using the OpenStack GUI or using the Glance CLI client.

Note: If your Horizon Dashboard does not support file uploads, you must use the Glance client.

OpenStack GUI

  1. Download the Pivotal Cloud Foundry Ops Manager for OpenStack image file from Pivotal Network.

  2. In the left navigation of your OpenStack dashboard, click Project > Compute > Images.

  3. Click Create Image. Complete the Create An Image page with the following information:

    • Name: Enter Ops Manager.
    • Image Source: Select Image File.
    • Image File: Click Choose File. Browse to and select the image file that you downloaded from Pivotal Network.
    • Format: Select Raw.
    • Minimum Disk (GB): Enter 40.
    • Minimum RAM (MB): Enter 4096.
    • Deselect the Public checkbox.
    • Select the Protected checkbox.
  4. Click Create Image.

    Create image

Glance CLI

  1. Download the Pivotal Cloud Foundry Ops Manager for OpenStack image file from Pivotal Network.

  2. In a terminal window, run the following command to install the Glance CLI client:

    $ apt-get install python-glanceclient
    
  3. Run admin-openrc.sh to download your openstack.rc file and target your OpenStack environment.

    $ ./admin-openrc.sh
    Please enter your OpenStack Password:
    
  4. Run the following command to use the Glance CLI client to upload the image file that you downloaded from Pivotal Network:

    $ glance image-create --progress --disk-format raw --name "Ops Manager" --container-format bare --file PATH/DOWNLOADED-FILE
    

Step 4: Launch Ops Manager VM

  1. In the left navigation of your OpenStack dashboard, click Project > Compute > Images.

  2. Click Launch.

    Launch image

  3. Complete the Details, Access & Security, and Networking tabs of the Launch Instance form with the information below.

Details Tab

Select the Details tab and specify the following details:

  • Availability Zone: Use the drop-down menu to select an availability zone. You use this availability zone when you Complete the Availability Zones Pages when Configuring Ops Manager Director.
  • Instance Name: Enter Ops Manager.
  • Flavor: Select m1.large.
  • Instance Count: Do not change from the default.
  • Instance Boot Source: Select Boot from image.
  • Image Name: Select the Ops Manager image.

    Instance details

Access & Security Tab

Select the Access & Security tab and specify the following details:

  • Key Pair: Select the key pair that you created in Step 2: Configure Security. You need this key pair to log in to the Ops Manager instance from your workstation.
  • Security Groups: Select the opsmanager checkbox. Deselect all other Security Groups.

    Instance security

Networking Tab

  1. Select the Networking tab.

  2. Under Available networks, select a private subnet. You add a Floating IP to this network in a later step.

  3. Click Launch.

    Instance networking

Step 5: Associate a Floating IP Address

  1. In the left navigation of your OpenStack dashboard, click Project > Compute > Instances.

  2. Wait until the Power State of the Ops Manager instances shows as Running.

  3. Record the private IP Address of the Ops Manager instance. You use this IP Address when you Complete the Create Networks Pages in Ops Manager.

    Instance running

  4. Select the Ops Manager checkbox. Click the Actions drop-down menu and select Associate Floating IP.

  5. Under IP Address, click +.

    Ip add

  6. Under Pool, select an IP Pool and click Allocate IP.

    Ip pool

  7. Under Port to be associated, select your Ops Manager instance. Click Associate.

    Ip associate

Step 6: Add Blob Storage

  1. In the left navigation of your OpenStack dashboard, click Project > Object Store > Containers.

  2. Click Create Container. Create a container with the following properties:

    • Container Name: Enter pcf.
    • Container Access: Select private.

    Create container

Step 7: Create a DNS Entry

Note: For security, Ops Manager 1.7 and later require you to create a fully qualified domain name in order to access Ops Manager during the initial configuration.

Create a DNS entry for the IP address that you used for Ops Manager. You must use this fully qualified domain name when you log into Ops Manager in the Configure Ops Manager Director for OpenStack step below.

Step 8: Configure Ops Manager Director for OpenStack

After completing this procedure, complete all of the steps in the Configuring Ops Manager Director after Deploying PCF on OpenStack and Installing Elastic Runtime after Deploying PCF on OpenStack topics.


Return to Installing Pivotal Cloud Foundry on OpenStack.

Create a pull request or raise an issue on the source for this page in GitHub