Ask Your Question
0

Havana keystone tenant creation problem

asked 2014-01-31 05:54:51 -0500

saranyanemo gravatar image

1.root@ubuntu:~# sudo keystone tenant-create --name=admin --description="Admin Tenant" Expecting an auth URL via either --os-auth-url or env[OS_AUTH_URL]

I got the above error and tried without sudo

2.root@ubuntu:~# keystone tenant-create --name=admin --description="Admin Tenant" (HTTP Unable to establish connection to http://controlleripaddr:35357/v2.0/tenants (http://controlleripaddr:35357/v2.0/te...)) Again a error,so configured the Auth url

3. root@ubuntu:/etc/keystone# export OS_USERNAME=admin root@ubuntu:/etc/keystone# export OS_PASSWORD=passw0rd14@ root@ubuntu:/etc/keystone# export OS_TENANT_NAME=admin root@ubuntu:/etc/keystone# export OS_AUTH_URL=http://172.16.31.77:35357/v2.0 root@ubuntu:/etc/keystone# keystone user-list Bypassing authentication using a token & endpoint (authentication credentials are being ignored). <attribute 'message'="" of="" 'exceptions.baseexception'="" objects="">

The port status root@ubuntu:~# netstat -an | grep 35357 tcp 0 0 0.0.0.0:35357 0.0.0.0:* LISTEN
root@ubuntu:~# ipconfig

Please help me to resolve this error.

edit retag flag offensive close merge delete

17 answers

Sort by ยป oldest newest most voted
0

answered 2014-02-03 04:18:22 -0500

saranyanemo gravatar image

root@ubuntu:/etc/keystone# service keystone restart keystone stop/waiting keystone start/running, process 3002 saran@ubuntu:/etc$ export OS_SERVICE_TOKEN=28e1d88c16d41eb39662 saran@ubuntu:/etc$ export OS_SERVICE_ENDPOINT=http://172.16.31.77:35357/v2.0 saran@ubuntu:/etc$ keystone service-create --name=keystone --type=identity --description="Identity Service" (HTTP Unable to establish connection to http://172.16.31.77:35357/v2.0/OS-KSADM/services (http://172.16.31.77:35357/v2.0/OS-KSA...))

I am trying for a week to resolve this error but i cant.please help The internet connection is firewall protected.

1.keystone.db is in this location

root@ubuntu:/home/saran# ls Desktop Downloads Music Public Videos Documents keystone.db Pictures Templates

2.keystone.conf file is here

root@ubuntu:~# cd /etc/keystone/ root@ubuntu:/etc/keystone# ls default_catalog.templates keystone.conf keystone-paste.ini logging.conf policy.json ssl

root@ubuntu:/etc/keystone# sudo cat keystone.conf [DEFAULT]

A "shared secret" between keystone and other openstack services

admin_token = 28e1d88c16d41eb39662

The IP address of the network interface to listen on

bind_host = 0.0.0.0

The port number which the public service listens on

public_port = 5000

The port number which the public admin listens on

admin_port = 35357

The base endpoint URLs for keystone that are advertised to clients

(NOTE: this does NOT affect how keystone listens for connections)

public_endpoint = http://localhost:%25(public_port)s/ (http://localhost:%(public_port)s/)

admin_endpoint = http://localhost:%25(admin_port)s/ (http://localhost:%(admin_port)s/)

The port number which the OpenStack Compute service listens on

compute_port = 8774

Path to your policy definition containing identity actions

policy_file = policy.json

Rule to check if no matching policy definition is found

FIXME(dolph): This should really be defined as [policy] default_rule

policy_default_rule = admin_required

Role for migrating membership relationships

During a SQL upgrade, the following values will be used to create a new role

that will replace records in the user_tenant_membership table with explicit

role grants. After migration, the member_role_id will be used in the API

add_user_to_project, and member_role_name will be ignored.

member_role_id = 9fe2ff9ee4384b1894a90878d3e92bab

member_role_name = _member_

enforced by optional sizelimit middleware (keystone.middleware:RequestBodySizeLimiter)

max_request_body_size = 114688

limit the sizes of user & tenant ID/names

max_param_size = 64

similar to max_param_size, but provides an exception for token values

max_token_size = 8192

=== Logging Options ===

Print debugging output

(includes plaintext request logging, potentially including passwords)

debug = False

Print more verbose output

verbose = False

Name of log file to output to. If not set, logging will go to stdout.

log_file = keystone.log

The directory to keep log files in (will be prepended to --logfile)

log_dir = /var/log/keystone

Use syslog for logging.

use_syslog = False

syslog facility to receive log lines

syslog_log_facility = LOG_USER

If this option is specified, the logging configuration file specified is

used and overrides any other logging options specified. Please see the

Python logging module documentation for details on logging configuration

files.

log_config = /etc/keystone/logging.conf

A logging.Formatter log message format string which may use any of the

available logging.LogRecord attributes.

log_format = %(asctime)s %(levelname)8s [%(name)s] %(message)s

Format ...

(more)
edit flag offensive delete link more
0

answered 2014-01-31 07:28:58 -0500

aji-zqfan gravatar image

sudo will open a sub shell in which the os env is not set, so you got the first error. No need to use sudo, keystone has its own rootwrap.

use keystone --debug user-list to get more information

edit flag offensive delete link more
0

answered 2014-01-31 10:31:24 -0500

saranyanemo gravatar image

root@ubuntu:~# keystone tenant-create --name demo --description "Default Tenant" WARNING: Bypassing authentication using a token & endpoint (authentication credentials are being ignored). (HTTP Unable to establish connection to http://172.16.31.77:35357/v2.0/tenants)

I tried but again the same exception.please help to troubleshoot

edit flag offensive delete link more
0

answered 2014-02-07 04:55:58 -0500

haneef gravatar image

Your keystone address is 172.16.31.77, but you are pinging 172.16.16.1

Most propably that is your DNS server and you are not able to resolve the address via DNS. Try to ping 172.16.31.77. If it doesn't work then you need to fix the dns issue

edit flag offensive delete link more
0

answered 2014-01-31 10:32:36 -0500

saranyanemo gravatar image

root@ubuntu:~# keystone --debug user-list WARNING: Bypassing authentication using a token & endpoint (authentication credentials are being ignored). REQ: curl -i -X GET http://172.16.31.77:35357/v2.0/users -H "User-Agent: python-keystoneclient" -H "X-Auth-Token: ed56375c2cda7ba9c574" (HTTP Unable to establish connection to http://172.16.31.77:35357/v2.0/users)

edit flag offensive delete link more
0

answered 2014-01-31 12:58:19 -0500

aji-zqfan gravatar image

I think host 172.16.31.77 doesn't running keystone service, or your request is proxied.

edit flag offensive delete link more
0

answered 2014-02-04 03:40:50 -0500

saranyanemo gravatar image

please anyone help to resolve this problem

edit flag offensive delete link more
0

answered 2014-02-05 08:56:25 -0500

saranyanemo gravatar image

aji-zqfan sir please tell whether there is any error in conf file?

edit flag offensive delete link more
0

answered 2014-02-05 22:00:24 -0500

haneef gravatar image

Either you are not running keystone or it firewalled or you are going via proxy.

Try to acess the version api which doesn't require any credentials.

Do the follwoing? 1) wget http://172.16.31.77:35357

edit flag offensive delete link more
0

answered 2014-02-06 03:40:42 -0500

saranyanemo gravatar image

saran@ubuntu:~$ wget http://172.16.31.77:35357 --2014-02-06 09:05:55-- http://172.16.31.77:35357/ Resolving 172.16.16.1 ( 172.16.16.1)... failed: Name or service not known. wget: unable to resolve host address ` 172.16.16.1'

Im getting this sir

edit flag offensive delete link more

Your Answer

Please start posting anonymously - your entry will be published after you log in or create a new account.

Add Answer

Get to know Ask OpenStack

Resources for moderators

Question Tools

1 follower

Stats

Asked: 2014-01-31 05:54:51 -0500

Seen: 514 times

Last updated: Feb 13 '14