| Table of Contents |
|---|
Overview
<An overview of Swarm Cloud Gateway>
Prerequisites
...
| Info |
|---|
Info Creating a user group/user/password applies when PAM authentication is used. You can create a user group via |
Create a user group via
groupadd clusteradmins.Add a new user.
Code Block language bash adduser dcadmin -g clusteradmins -p datacore passwd datacore
Update CentOS and install epel.
Code Block language bash yum -y update yum -y install epel-release
Install NTP server and ensure that NTP starts on the system boot.
Code Block language bash yum -y install chrony systemctl enable chronyd systemctl start chronyd
Install Java 8 JDK via
yum -y install java-1.8.0-openjdk.Configure the firewall to allow Cloud Gateway
vi /usr/lib/firewalld/services/swarm_gateway.xml.Code Block language xml <?xml version="1.0" encoding="utf-8"?> <service> <short>SwarmGateway</short> <description>Elasticsearch server REST API, which is based on http traffic.</description> <port protocol="tcp" port="80"/> <port protocol="tcp" port="91"/> <port protocol="tcp" port="8090"/> <port protocol="tcp" port="9100"/> </service>
Restart the firewall service.
Add Cloudgateway Cloud Gateway firewall rule (permanent) via
firewall-cmd --permanent --add-service swarm_gatewaycommand.Reload the firewall service
firewall-cmd --reload.Unzip Swarm 14.0 bundle package to
/root/datacore.From the downloaded Swarm bundle, get the latest gateway and UI RPMs.
Code Block language bash ll ~/datacore/Gateway/ total 57352 -rw-r--r--. 1 root root 58718208 Dec 16 22:37 caringo-gateway-7.7.1-2.noarch.rpm -rw-r--r--. 1 root root 395 Dec 16 22:37 README.txt -rw-r--r--. 1 root root 1927 Oct 2 04:17 RPM-GPG-KEY ll ~/datacore/UI/ total 21616 -rw-r--r--. 1 root root 2835590 Oct 2 04:17 caringo-gateway-webui-7.4.0-1.noarch.rpm -rw-r--r--. 1 root root 19286001 Dec 16 22:37 caringo-storage-webui-3.4.0-1.noarch.rpm -rw-r--r--. 1 root root 359 Dec 16 22:37 README.txt -rw-r--r--. 1 root root 1927 Oct 2 04:17 RPM-GPG-KEY
Install Swarm RPM public key included with the distribution bundle using
rpm –import RPM-GPG-KEY.Install Cloud Gateway components
yum -y install caringo-gateway-7.8.0-1.noarch.rpm.Complete the IDSYS document for PAM user authentication
vi /etc/caringo/cloudgateway/idsys.json.Code Block language json {"pam": { "name" : "idsys-pam", "description": "PAM identity management configuration", "cookieName": "token", "tokenPath": "/.TOKEN/", "tokenAdmin": "dcadmin@" }}Complete policy document for the access control
vi /etc/caringo/cloudgateway/policy.json.Code Block language json { "Id": "Root policy -- grant admins full access to everything", "Statement": [ { "Sid": "Grant admins full access", "Resource": "*", "Principal": { "user": ["dcadmin@"], "group": ["clusteradmins@"] }, "Action": [ "*" ], "Effect": "Allow" } ] }Install Gateway WebUI
yum -y install caringo-gateway-webui-7.5.0-1.noarch.rpm.Edit Cloudgateway Cloud Gateway configure file
/etc/caringo/cloudgateway/gateway.cfg.Set adminDomain for the administrative domain name to be created. It is recommended to always set a unique name for each Swarm cluster to prevent replication collision between Source and Target Swarm Cluster. Set a unique name for each Swarm cluster to prevent replication collision.
Set hosts for the storage cluster nodes (i.e., IP address of storage nodes).
Set indexerHosts to Elasticsearch Servers (i.e., IP address of Elasticsearch nodes).
Enable S3.
EnableCluster Admin on the gateway server. It will install Swarm Storage UI.
Enable Management Port 91. The admin user and password must be the same as configured in SCS.
Set admin.username
Set admin.password
Code Block language bash # Following are only needed when enabling cluster_admin managementPort = 91 managementUser = dcadmin managementPassword = datacore
Enable metering.
...