Configuration, Installation, and Use of Red Hat OpenStack Services on OpenShift
Access Your Lab Environment
-
Access to the bastion executing the following command:
ssh {bastion_ssh_user_name}@{bastion_public_hostname} -p {bastion_ssh_port}SSH password is
{bastion_ssh_password}. The uuid of your lab is:my-guid -
Optionally copy your public SSH key to the bastion allowing you to authenticate with the server without entering a password every time you connect:
ssh-copy-id -p {bastion_ssh_port} {bastion_ssh_user_name}@{bastion_public_hostname}If needed, you can navigate to the OpenShift console URL: {openshift_cluster_console_url}[{openshift_cluster_console_url}^] using user
adminand password{openshift_cluster_admin_password}
Prerequisites for Installation
Some prerequisites needed to install Red Hat OpenStack Services on OpenShift (RHOSO) are already included in the lab environment such as:
-
An operational OpenShift cluster which supports Multus CNI
-
oc command line tool on your workstation (bastion host)
-
podman command line tool on your workstation (bastion host)
-
Access to repositories which contain the Dev Preview code
-
Access to an existing registry or create a local Quay registry
-
Example YAML files are available in this repository which can be cloned or copy and pasted for use. For ease of instructions it will be assumed the repo has been cloned
Install the Prerequisite Operators
There are three operators that are required to be installed before you can install the OpenStack Operator, the NMState Operator the MetalLB Operator and the Cert-Manager + Operator
Accessing the Cluster
From the bastion, execute:
oc get nodesNAME STATUS ROLES AGE VERSION control-plane-cluster-x55dt-1 Ready control-plane,master,worker 3d19h v1.29.10+67d3387 control-plane-cluster-x55dt-2 Ready control-plane,master,worker 3d19h v1.29.10+67d3387 control-plane-cluster-x55dt-3 Ready control-plane,master,worker 3d19h v1.29.10+67d3387
NMState Operator
Create the nmstate Operator namespace:
cat << EOF | oc apply -f -
apiVersion: v1
kind: Namespace
metadata:
labels:
kubernetes.io/metadata.name: openshift-nmstate
name: openshift-nmstate
name: openshift-nmstate
spec:
finalizers:
- kubernetes
EOFCreate the OperatorGroup:
cat << EOF | oc apply -f -
apiVersion: operators.coreos.com/v1
kind: OperatorGroup
metadata:
annotations:
olm.providedAPIs: NMState.v1.nmstate.io
name: openshift-nmstate
namespace: openshift-nmstate
spec:
targetNamespaces:
- openshift-nmstate
EOFConfirm the OperatorGroup is installed in the namespace:
oc get operatorgroup -n openshift-nmstateSubscribe to the nmstate Operator:
cat << EOF| oc apply -f -
apiVersion: operators.coreos.com/v1alpha1
kind: Subscription
metadata:
labels:
operators.coreos.com/kubernetes-nmstate-operator.openshift-nmstate: ""
name: kubernetes-nmstate-operator
namespace: openshift-nmstate
spec:
channel: stable
installPlanApproval: Automatic
name: kubernetes-nmstate-operator
source: redhat-operators
sourceNamespace: openshift-marketplace
EOFConfirm that NMstate operator is running. Repeat this command until you see the desired output:
oc get clusterserviceversion -n openshift-nmstate -o custom-columns=Name:.metadata.name,Phase:.status.phase -wClick Control + C when you see that the operator has moved to Succeded state
Name Phase kubernetes-nmstate-operator.4.13.0-202402211707 Succeeded
Create instance of the nmstate operator:
cat << EOF | oc apply -f -
apiVersion: nmstate.io/v1
kind: NMState
metadata:
name: nmstate
EOFConfirm that the deployment for the nmstate operator is running:
oc get clusterserviceversion -n openshift-nmstate \
-o custom-columns=Name:.metadata.name,Phase:.status.phaseMetalLB Operator
Create the MetalLB Operator namespace:
cat << EOF | oc apply -f -
apiVersion: v1
kind: Namespace
metadata:
name: metallb-system
EOFCreate the OperatorGroup:
cat << EOF | oc apply -f -
apiVersion: operators.coreos.com/v1
kind: OperatorGroup
metadata:
name: metallb-operator
namespace: metallb-system
EOFConfirm the OperatorGroup is installed in the namespace:
oc get operatorgroup -n metallb-systemSubscribe to the metallb Operator:
cat << EOF| oc apply -f -
apiVersion: operators.coreos.com/v1alpha1
kind: Subscription
metadata:
name: metallb-operator-sub
namespace: metallb-system
spec:
channel: stable
name: metallb-operator
source: redhat-operators
sourceNamespace: openshift-marketplace
EOFConfirm the metallb installplan is in the namespace:
oc get installplan -n metallb-systemConfirm the metallb operator is installed:
oc get clusterserviceversion -n metallb-system \
-o custom-columns=Name:.metadata.name,Phase:.status.phase -wType Control + C when you see that the operator has moved to Succeded state
Name Phase metallb-operator.v4.16.0-202502260004 Succeeded
Create a single instance of a metallb resource:
cat << EOF | oc apply -f -
apiVersion: metallb.io/v1beta1
kind: MetalLB
metadata:
name: metallb
namespace: metallb-system
spec:
nodeSelector:
node-role.kubernetes.io/worker: ""
EOFVerify that the deployment for the controller is running:
oc get deployment -n metallb-system controllerRepeat the command until AVAILABLE is 1
Verify that the daemon set for the speaker is running:
oc get daemonset -n metallb-system speakerCert-Manager Operator
The cert-manager-operator is already installed in this environment:
Verify that cert-manager pods are up and running by entering the following command:
oc get pods -n cert-managerRepeat command until all pods are showing READY 1/1
NAME READY STATUS RESTARTS AGE cert-manager-cainjector-5df47878b-knmwg 1/1 Running 0 19s cert-manager-webhook-66c75fcddf-8kldt 1/1 Running 0 23s