OpenStack provides open source cloud software used to create public or private clouds. OpenStack software enables you to have virtualized computing platforms, as public clouds, private clouds hosted by a cloud provider, or in your own data center.
You access and configure all of your services, using the OpenStack Dashboard (horizon). Horizon is the product name for the dashboard component. Most other OpenStack components, known as projects, have product names, for example, the Compute Service is called nova. For more information see the OpenStack project navigator.
This section describes the settings and procedures required to discover services running in OpenStack. It contains the following sections:
BMC Discovery enables you to discover your cloud services running in OpenStack. The following set of OpenStack services can be discovered with the latest product content update:
More detailed information on discovery of OpenStack services is contained in the following Configipedia pages:
To perform discovery on OpenStack, you must provide a credential with which BMC Discovery can access the OpenStack cloud. You create the credential using the OpenStack (horizon) dashboard.
Creating a credential is a two stage process, you create a credential in the OpenStack dashboard, and then add the cloud discovery credential, using the access key created in the OpenStack dashboard, in BMC Discovery.
discovery
. You must grant the new discovery user the admin
role.Enter a user name and password.
If you lose the password, you cannot retrieve it from the dashboard. Rather, you must update the password and use it the BMC Discovery cloud credential. You should keep a note of the password until you have successfully tested the cloud credential.
admin
role.Create the cloud credential in the same way as any other credential. The OpenStack cloud credential uses a username and password combination in the same way as a device credential.
Once you have created the credential, you should test it to ensure that it works.
If the credential test was unsuccessful, click on the 'Failure' status to see the details.
The BMC Discovery appliance must be able to access OpenStack using https (port 443).
To perform cloud discovery, from the Discovery Status page, use the Add New run control.
Once you have scanned, you can examine the results. The screen below shows a discovered VM running in OpenStack.
Perform a normal scan on the hosts running the VMs discovered in the cloud scan. Use the Unscanned Cloud Hosts report on the Cloud Overview dashboard to find these.
Scanning the hosts assumes that the appliance or proxy has network access to hosts running in the cloud, for example, using a VPN.
The OpenStack discovery patterns are available on the Manage > Knowledge page. They are located in the Pattern modules list, under Cloud > OpenStack.
There is known issue with OpenStack discovery of OTC (Open Telekom Cloud).
During Openstack discovery of this provided OpenStack.Keystone.Projects.List fails. This is because it requires another URL to get list of projects.
The fix is simple:
1. Edit /usr/tideway/data/installed/cloud/openstack.json on the Discovery appliance.
2: Find OpenStack.Keystone.Projects.List request section
3. Change "url" value from "{endpoint}/auth/projects" to "{endpoint}/projects".
4. Save file, restart all Discovery services.
The differences between these two URLs that can be used to get the list of the projects are:
- "/auth/projects" URL returns the list of projects that are available to be scoped to based on the X-Auth-Token provided in the request. (https://docs.openstack.org/api-ref/identity/v3/?expanded=get-available-project-scopes-detail)
- "/projects" URL returns all projects (https://docs.openstack.org/api-ref/identity/v3/index.html?expanded=list-projects-detail#list-projects)