OpenStack network definition:

-----------------------------------------------------
$ virsh net-dumpxml openstackvms
<network connections='1'>
  <name>openstackvms</name>
  <uuid>d0e9964a-f91a-40c0-b769-a609aee41bf2</uuid>
  <forward mode='nat'>
    <nat>
      <port start='1024' end='65535'/>
    </nat>
  </forward>
  <bridge name='virbr1' stp='on' delay='0' />
  <mac address='52:54:00:60:f8:6e'/>
  <ip address='192.169.122.1' netmask='255.255.255.0'>
    <dhcp>
      <range start='192.169.122.2' end='192.169.122.254' />
    </dhcp>
  </ip>
</network>
-----------------------------------------------------


Resize the guest (if need be):

  http://kashyapc.fedorapeople.org/virt/resize-a-guest.txt

Install packages:

  $ yum install mariadb-server

Add iptables rules:

  $ iptables -A INPUT -p tcp -m multiport --dports 3306 -j ACCEPT

Restart firewalld:

  $ systemctl restart firewalld.service

Restart mysql:

  $ systemctl start mysqld.service

Start the mysqld:

  $ systemctl enable mysqld.service

Set password:

  $ /usr/bin/mysqladmin -u root password "redhat"

Add qpid-cpp docs:

  $ yum install -y qpid-cpp-server qpid-cpp-server-ssl

Update qpidd.conf:

  $ cat /etc/qpidd.conf | grep -v ^$ | grep -v ^#
  cluster-mechanism=DIGEST-MD5 ANONYMOUS
  auth=no

Add iptables rule:

  $ iptables -I INPUT -p tcp -m tcp --dport 5672  -j ACCEPT


Startr the messaging server

  $ systemctl start qpidd.service
  $ systemctl enable qpidd.service


== Identity setup ==

  $ yum install -y openstack-keystone \
    openstack-utils openstack-selinux -y


Create Identity Database:

-------
  [root@f19x86_64a ~]# mysql -u root -p
  Enter password: 
  Welcome to the MariaDB monitor.  Commands end with ; or \g.
  Your MariaDB connection id is 2
  Server version: 5.5.31-MariaDB MariaDB Server
  
  Copyright (c) 2000, 2013, Oracle, Monty Program Ab and others.
  
  Type 'help;' or '\h' for help. Type '\c' to clear the current input statement.
  
  MariaDB [(none)]> CREATE DATABASE keystone;
  Query OK, 1 row affected (0.00 sec)
  
  MariaDB [(none)]> GRANT ALL ON keystone.* TO 'keystone'@'%' IDENTIFIED BY 'redhat';
  Query OK, 0 rows affected (0.00 sec)
  
  MariaDB [(none)]> GRANT ALL ON keystone.* TO 'keystone'@'localhost' IDENTIFIED BY 'redhat';
  Query OK, 0 rows affected (0.00 sec)
  
  MariaDB [(none)]> 
  MariaDB [(none)]> FLUSH PRIVILEGES;
  Query OK, 0 rows affected (0.00 sec)
  
  MariaDB [(none)]> quit
  Bye
  [root@f19x86_64a ~]# 
-------

Configure the service:

  $ export SERVICE_TOKEN=$(openssl rand -hex 10)
  $ echo $SERVICE_TOKEN
  b3d021b6b3bed1ea4a9b
  $ echo $SERVICE_TOKEN > ~/ks_admin_token
  $ openstack-config --set /etc/keystone/keystone.conf \
  DEFAULT admin_token $SERVICE_TOKEN

Set the database connection string:

  $ openstack-config --set /etc/keystone/keystone.conf \
    sql connection mysql://keystone:redhat@192.168.122.60/keystone


Run keystone_manage:

-------
  $ keystone-manage pki_setup
  Generating RSA private key, 1024 bit long modulus
  ..........++++++
  .......++++++
  e is 65537 (0x10001)
  Generating RSA private key, 1024 bit long modulus
  .......................................++++++
  ......++++++
  e is 65537 (0x10001)
  Using configuration from /etc/keystone/ssl/certs/openssl.conf
  Check that the request matches the signature
  Signature ok
  The Subject's Distinguished Name is as follows
  countryName           :PRINTABLE:'US'
  stateOrProvinceName   :PRINTABLE:'Unset'
  localityName          :PRINTABLE:'Unset'
  organizationName      :PRINTABLE:'Unset'
  commonName            :PRINTABLE:'www.example.com'
  Certificate is to be certified until Jun  5 22:56:38 2013 GMT (365 days)
  
  Write out database with 1 new entries
  Data Base Updated
-------