You deploy OpenStack by using the VMware Integrated OpenStack vApp on your vCenter Server instance.

Note:

The following procedure applies only to HA and compact deployments. To deploy in tiny mode, see VMware Integrated OpenStack Deployment in Tiny Mode.

Prerequisites

  • Prepare your networks and vCenter Server environment. See Preparing Your Environment.

  • Install VMware Integrated OpenStack on your vCenter Server instance. See Install VMware Integrated OpenStack.

  • Verify that all required clusters and datastores are available.

    • Clusters must include the required number of hosts and datastores and must not be consumed by another node.

    • Datastores must be mounted to the correct cluster and must not be already configured.

  • Verify that the DNS server is set correctly and that the network gateway or firewall forwards DNS requests on private networks.

Procedure

  1. In the vSphere Web Client, select Home > VMware Integrated OpenStack.
  2. On the Getting Started tab, click Deploy OpenStack in the lower panel.
  3. Select whether you want to create a new deployment or use an exported template to populate settings.
  4. Select HA or Compact from the Deployment mode drop-down menu.
  5. Click Next and enter a name for the deployment.
  6. If you want to use multiple vCenter Server instances, deselect the Use management vCenter Server as Compute vCenter Server checkbox and enter the FQDN or IP address, administrator credentials, and availability zone of the compute vCenter Server instance.

    Otherwise, select the checkbox and enter the FQDN or IP address, administrator credentials, and availability zone or your vCenter Server instance.

  7. If the OpenStack Management Server connects to the vCenter Server instance over a private, secure network and you need to disable certificate validation, select the Ignore the vCenter Server certificate validation checkbox.
  8. Click Next and select the management cluster that you created during preparation.
    Figure 1. Select the management cluster




  9. Click Next and provide the settings for the management network and API access network that you defined during preparation.

    If you are deploying in compact mode, you can also enter a public hostname for the API access network.

    Figure 2. Configure management networking




  10. If you are deploying in HA mode, click Next and enter the hostname and public virtual IP address of the load balancer service.
  11. Click Next and select the compute cluster that you created during preparation.
  12. Click Next and select one or more datastores for the compute component to consume.

    The selected datastores are used to create instances.

    Figure 3. Add Nova datastores




  13. Click Next and select one or more datastores for the image service component to consume.

    The selected datastores are used to store images.

  14. Click Next and select a networking mode.
    • If you want to deploy with VDS networking, click Virtual Distributed Switch Networking and select the VDS on which to create the port groups backing the provider network.

    • If you want to deploy with NSX-V networking, click NSX-V Networking and specify the FQDN or IP address and administrator credentials of your NSX Manager. After the credentials are validated, select the other parameters for your NSX-V deployment from the drop-down lists. You can also choose whether to enable HA for edge nodes and whether to use an independent metadata service network.

    • If you want to deploy with NSX-T networking, click NSX-T Networking and specify the FQDN or IP address and administrator credentials of your NSX Manager. After the credentials are validated, select the other parameters for your NSX-T deployment from the drop-down lists.

    Important:

    You cannot change the networking mode after deploying VMware Integrated OpenStack. If you need to switch to a different networking mode, you must redeploy.

  15. Click Next and enter the username and password for the administrator account on the VMware Integrated OpenStack dashboard.
  16. If you want to use Active Directory for LDAP authentication, select the Enable checkbox in the lower pane.
    1. Click the Add (plus sign) icon and enter the parameters for Active Directory.

      Option

      Description

      Active Directory domain Name

      Specify the full Active Directory domain name; for example, vmware.com.

      Keystone Domain Name

      A Keystone domain defines the administrative boundaries for management of Keystone entities. A domain can represent an individual, company, or operator owned space.

      Bind user

      Provide the user name to bind to Active Directory for LDAP requests.

      Bind password

      Provide the password to allow the LDAP client access to the LDAP server.

      Domain controllers

      (Optional) VMware Integrated OpenStack automatically chooses the existing Active Directory domain controllers. However, you can specify a list of specific domain controllers to use by selecting the Domain controller radio button and entering the IP address of one or more domain controllers, separated by commas.

      Site

      (Optional) Optionally, you can limit LDAP searching to a specific deployment site within your organization; for example, sales.vmware.com. Do to this, select the Site radio button and enter the domain name of the site to search.

      User Tree DN

      (Optional) Enter the search base for users; for example, DC=vmware, DC=com. Defaults to the top of the user tree in most Active Directory deployments.

      User Filter

      (Optional) Enter an LDAP search filter for users.

      Important:

      If your directory contains more than 1,000 objects (users and groups), you must apply a filter to ensure that fewer than 1,000 objects are returned. For examples of filters, see https://docs.microsoft.com/en-us/windows/desktop/ADSI/search-filter-syntax.

      Group tree DN

      (Optional) Enter the search base for groups. Defaults to the top of the user tree in most Active Directory deployments with the '[ldap]suffix' value. For example, group_tree-dn={{ldap_group_tree_dn}}.

      Group filter

      (Optional) Enter an LDAP search filter to use for groups. For example, group_filter = {{ ldap_group_filter | default('') }}

      LDAP admin user

      (Optional) If the Keystone Identity provider is configured to work with OpenLDAP, enter the LDAP admin user.

      You can click Advanced Settings to display additional parameters.

    2. Click Validate and click OK
  17. Click Next. If you want to use vRealize Log Insight to manage logs, enter the parameters of your vRealize Log Insight syslog server.
  18. Click Next and select whether you want to participate in the Customer Experience Improvement Program.

    For more information, see Customer Experience Improvement Program.

  19. Click Next and review your settings. When you are satisfied that the settings are correct, click Finish.

Results

The VMware Integrated OpenStack vApp begins to deploy your OpenStack cloud.

The status of the deployment is displayed as Provisioning. When the status changes to Running, the deployment is complete.

What to do next

Verify Your OpenStack Deployment