LATEST VERSION: 1.9 - CHANGELOG
Pivotal Cloud Foundry v1.7

Provisioning the OpenStack Infrastructure

Page last updated:

This guide describes how to provision the OpenStack infrastructure that you need to install Pivotal Cloud Foundry (PCF) OpenStack. This document uses Mirantis Openstack. Use this topic when Installing Pivotal Cloud Foundry on OpenStack.

After completing this procedure, complete all of the steps in the Configuring Ops Manager Director for OpenStack and Installing Elastic Runtime on OpenStack topics.

Step 1: Log In to the OpenStack Horizon Dashboard

  1. Log in to the OpenStack Horizon Dashboard.

    Log in

Step 2: Configure Security

This section describes adding key pairs for your PCF deployment.

Note: OpenStack 8 uses the Python Paramiko library, which uses the BER or DER format instead of PEM. If you are using OpenStack 8, import your own key using ssh-keygen, and skip to Step 3 below.

  1. In the left navigation of your OpenStack dashboard, click Project > Compute > Access & Security.

  2. Select the Key Pairs tab on the Access & Security page.

  3. Click Create Key Pair.

  4. Enter a Key Pair Name and click Create Key Pair.

    Create key pair

  5. In the left navigation, click Access & Security to refresh the page.

  6. Select the Security Groups tab. Click Create Security Group and create a group with the following properties:

    • Name: opsmanager
    • Description: Ops Manager

    Create security

  7. Select the checkbox for the opsmanager Security Group and click Manage Rules.

    Manage security rules

  8. Add the access rules for HTTP, HTTPS, and SSH as shown in the table below. The rules with opsmanager in the Remote column have restricted access to that particular Security Group.

    Note: Adjust the remote sources as necessary for your own security compliance. Pivotal recommends limiting remote access to Ops Manager to IP ranges within your organization.

    Note: If you intend to set up ICMP for your PCF deployment, you should add those rules here.

    Direction Ether Type IP Protocol Port Range Remote
    Ingress IPv4 Custom TCP 22 (SSH) 0.0.0.0/0 (CIDR)
    Ingress IPv4 Custom TCP 80 (HTTP) 0.0.0.0/0 (CIDR)
    Ingress IPv4 Custom TCP 443 (HTTPS) 0.0.0.0/0 (CIDR)
    Ingress IPv4 Custom TCP 25555 0.0.0.0/0 (CIDR)
    Ingress IPv4 Custom TCP 1-65535 opsmanager
    Ingress IPv4 Custom UDP 1-65535 opsmanager

Step 3: Create Ops Manager Image

Use one of the following tools to create the Ops Manager image in OpenStack:

Note: If your Horizon Dashboard does not support file uploads, you must use the Glance client.

(Option) OpenStack GUI

  1. Download the Pivotal Cloud Foundry Ops Manager for OpenStack image file from Pivotal Network.

  2. In the left navigation of your OpenStack dashboard, click Project > Compute > Images.

  3. Click Create Image. Complete the Create An Image page with the following information:

    • Name: Enter Ops Manager.
    • Image Source: Select Image File.
    • Image File: Click Choose File. Browse to and select the image file that you downloaded from Pivotal Network.
    • Format: Select Raw.
    • Minimum Disk (GB): Enter 40.
    • Minimum RAM (MB): Enter 4096.
    • Ensure that the Public checkbox is not selected.
    • Select the Protected checkbox.
  4. Click Create Image.

    Create image

(Option) Glance CLI

  1. Install the Glance CLI client.

  2. Download the Pivotal Cloud Foundry Ops Manager for OpenStack image file from Pivotal Network.

  3. Run admin-openrc.sh to download your openstack.rc file and target your OpenStack environment.

    $ ./admin-openrc.sh
    Please enter your OpenStack Password:
    
  4. Run the following Glance command to upload the image file that you downloaded from Pivotal Network:

    $ glance image-create --progress --disk-format raw --name "Ops Manager" --container-format bare --file PATH/DOWNLOADED-FILE
    

Step 4: Launch Ops Manager VM

  1. In the left navigation of your OpenStack dashboard, click Project > Compute > Images.

    Launch image

  2. Click Launch to initate your project image.

  3. Complete the Details, Access & Security, and Networking tabs of the Launch Instance form with the information below.

Details Tab

Select the Details tab and specify the following details:

  • Availability Zone: Use the drop-down menu to select an availability zone. You use this availability zone when you Complete the Availability Zones Pages when Configuring Ops Manager Director.
  • Instance Name: Enter Ops Manager.
  • Flavor: Select m1.large.
  • Instance Count: Do not change from the default.
  • Instance Boot Source: Select Boot from image.
  • Image Name: Select the Ops Manager image.

    Instance details

Access & Security Tab

Select the Access & Security tab and specify the following details:

  • Key Pair: Select the key pair that you created in Step 2: Configure Security. You need this key pair to log in to the Ops Manager instance from your workstation.
  • Security Groups: Select the opsmanager checkbox. Deselect all other Security Groups.

    Instance security

Networking Tab

  1. Select the Networking tab.

  2. Under Available networks, select a private subnet. You add a Floating IP to this network in a later step.

  3. Click Launch.

    Instance networking

Step 5: Associate Floating IP Address

  1. In the left navigation of your OpenStack dashboard, click Project > Compute > Instances.

  2. Wait until the Power State of the Ops Manager instances shows as Running.

  3. Record the private IP Address of the Ops Manager instance. You use this IP Address when you Complete the Create Networks Pages in Ops Manager.

    Instance running

  4. Select the Ops Manager checkbox. Click the Actions drop-down menu and select Associate Floating IP.

  5. Under IP Address, click +.

    Ip add

  6. Under Pool, select an IP Pool and click Allocate IP.

    Ip pool

  7. Under Port to be associated, select your Ops Manager instance. Click Associate.

    Ip associate

Step 6: Add Blob Storage

  1. In the left navigation of your OpenStack dashboard, click Project > Object Store > Containers.

  2. Click Create Container. Create a container with the following properties:

    • Container Name: Enter pcf.
    • Container Access: Select private.

    Create container

Step 7: Create a DNS Entry

Note: Ops Manager 1.7 security features require you to create a fully qualified domain name in order to access Ops Manager during the initial configuration.

Create a DNS entry for the IP address that you used for Ops Manager. You must use this fully qualified domain name when you log into Ops Manager in the Configure Ops Manager Director for OpenStack step below.

Step 8: Configure Ops Manager Director for OpenStack

Now that you have completed this procedure, complete all of the steps in the Configuring Ops Manager Director for OpenStack and Installing Elastic Runtime on OpenStack topics.


Return to Installing Pivotal Cloud Foundry on OpenStack.

Was this helpful?
What can we do to improve?
View the source for this page in GitHub