在centos6下试用rhel7的OpenLMI运维接口工具

看到有人介绍rhel7 有很多的新特性,docker容易,openlmi什么的。  openlmi的资料还是不多,官网也只是提供了有限的几个例子。 

centos6下是无法安装openlmi的,只能是等待centos7了。一会安装个rhel7 试试。


看了下过程,感觉和redhat的func有些相像。 估计是从func过度开发到的openlmi。

rhel7的镜像下载地址:

ftp://ftp.redhat.com//redhat/rhel/beta/7/x86_64/iso/rhel-everything-7.0-beta-1-x86_64-dvd.iso

OpenLMI Quick Start Guide

All the instructions on this page assume the user to run the Fedora, Red Hat Enterprise Linux, CentOS or derived distribution.

Install OpenLMI
OpenLMI can be installed by installing the openlmi package. This is a metapackage that installs the OpenLMI infrastructure and a base set of OpenLMI Providers. Additional Providers and other packages can be installed later.
安装openlmi
# yum install openlmi
Start the CIMOM
The OpenLMI CIMOM runs as a service. For security reasons, services are not automatically started. You will need to start the CIMOM manually, using the command:

他的端口是tcp的5989
# firewall-cmd –add-port 5989/tcp
You will probably want to open this port permanently:

# firewall-cmd –permanent –add-port 5989/tcp
SELinux
All the OpenLMI functionality should work in SELinux enforcing mode. Any AVC message in the audit log or even a failure caused by the SELinux denial should be considered a bug and reported in the Red Hat Bugzilla or the OpenLMI upstream Trac. To disable SELunix temporarily run:

# setenforce 0
Remote Access
You next need to configure the users for remote access. The Pegasus CIMOM can accept either root or pegasus as users (configuring OpenPegasus to use other users is beyond the scope of this article). You can do one or both of the following actions; doing both will enable using OpenLMI calls using either root or pegasus as the user.

The user pegasus is created – without a password – when you install OpenLMI. To use the pegasus user you need to add a password by using the command
# passwd pegasus
(as root) and then giving it a password.

Install LMIShell, the OpenLMI Client
The OpenLMI client consists of the LMIShell environment and a set of system management scripts. The OpenLMI client is installed on the client system – that is, the system that will be used to manage other systems. You don’t need to install the OpenLMI client on managed systems, and you don’t need to install OpenLMI Providers on the client system. A single system with the OpenLMI client installed can manage multiple servers.

To install the OpenLMI client on a Fedora 20 system, simply install the openlmi-scripts package:

# yum install ‘openlmi-scripts*’
Server Certificate
In order to access a remote LMI managed system, you will need to copy the Pegasus server certificate to the client system. This can be done with:

# scp root@managed-machine:/etc/Pegasus/client.pem /etc/pki/ca-trust/source/anchors/managed-machine-cert.pem
Where “managed-machine” is the name of the managed system. You then need to:

# update-ca-trust extract
to update the local certificate store to include the certificate from the managed system.

Note that the certificate contains the system name. For OpenLMI to work correctly you need to assign a unique hostname to each server and then access the server by hostname rather than IP address.

Try It Out
At this point you should be ready to go! Test the installation by running an LMI command from a system with the LMIShell client and scripts installed; (replace example.com with the actual system name):

# lmi -h example.com
lmi> hwinfo
username: pegasus
password:
Hostname: managed-system
Chassis Type: Desktop
Manufacturer: Chassis Manufacturer
Model: System Version (System Product Name)
Serial Number: Chassis Serial Number
Asset Tag: Asset-1234567890
CPU: AMD Phenom(tm) II X3 715
Processor Topology: 1 cpu(s), 3 core(s), 1 thread(s)
Max Freq: 2800 MHz
Arch: x86_64
Memory: 8 GB
Slots: 4 used, N/A total
lmi>
Further Information
To configure Open Pegasus to be used by other users as well as other more advanced configurations, refer to the OpenPegasus Administrator’s Guide.

There is a separate document describing how to configure the Pegasus access control with FreeIPA HBAC.


大家觉得文章对你有些作用! 如果想赏钱,可以用微信扫描下面的二维码,感谢!
另外再次标注博客原地址  xiaorui.cc

1 Response

发表评论

邮箱地址不会被公开。 必填项已用*标注