VCD Object Storage Extension-Part 4:Cloudian Configuration for VCD

In last post of this series, I explained cloudian installation workflow. In this post I will cover the steps of configuring cloudian so that it can be integrated and consumed by VMware Cloud Director.

If you have landed directly on this post by mistake, I would recommend reading previous articles from this series:

1: Introduction & Architecture of VCD OSE

2: Infrastructure Preparation

3: Installing Cloudian Hyperstore

Connect to cloudian server by typing https://<Cloudian-Fqdn>:8443/Cloudian and use credentials admin/public

vCD-OSE27

1: Create Default Storage Policy

A storage policy is a method of storing and protecting S3 object data and object metadata.

To create a new storage policy, navigate to Cluster > Storage Policies tab and click on + Create Storage Policy option.

vCD-OSE29

Provide name & Description for the policy 

vCD-OSE30

Leave the “Group Visibility” unspecified so that this policy is visible to all groups and click on save button.

vCD-OSE31

Your new storage policy is created. Click on Enable button to activate the policy.

vCD-OSE33

2: Enable SSO and provide a unique shared key for the Cloudian Management Console.

Edit the mts-ui.properties file and enable SSO and change default shared key

3: Enable Hyperstore Identity and Access Manager

IAM settings is enabled via common.csv file which is located at /etc/cloudian-<version>-puppet/manifests/extdata/common.csv

Make sure your common.csv file looks like as shown below:

4: Enable TLS/SSL for S3 Endpoint

For the S3 Service, HTTPS is disabled by default and there is no default keystore. To set up HTTPS for the S3 Service, Connect to cloudian appliance over ssh and invoke the /opt/cloudian-staging/<version>/cloudianInstall.sh script

From the installer’s Advanced Configuration Options menu select “Advanced Configuration Options” by typing 4 in choice.

vCD-OSE42

Type ‘e’ to select “Configure SSL for S3”.

vCD-OSE43

Under S3 SSL Configuration sub-menu, type ‘a’ to select “Generate keystore for S3” option.

vCD-OSE44

You can either accept the default values that will go into keystore or type ‘no’ to customize it as per your infrastructure.

Press any key to continue post keystore creation task. Make a note of the keystore location for future reference.

vCD-OSE45

Type ‘b’ to enable HTTPS for S3

vCD-OSE46

Type ‘yes’ to enable HTTPS settings for S3.

vCD-OSE47

5: Enable Shared Bucket List

Shared bucket setting is controlled via mts.properties.erb file located in directory: /etc/cloudian-<version>-puppet/modules/cloudians3/templates/

# Add below parameter in mts.properties.erb file

6: Apply Configuration Changes

Return to installer main menu and select “Cluster Management” option

vCD-OSE48

Select “Push Configuration Settings to Cluster” option

vCD-OSE49

Press enter to push configuration changes to all nodes (one node in my example)

vCD-OSE50

And that’s it for this post. In next post of this series I will demonstrate how to install VCD OSE and configure cloudian integration with VCD.

I hope you enjoyed reading this post. Feel free to share this on social media if it is worth sharing 🙂

Leave a Reply