Installing Cisco VIM Unified Management with Internet Access
Complete the following steps to install Cisco VIM Insight on the Cisco NFVI management node. As security is paramount to pod management, the web-service hosting the single pane of glass is protected through TLS. Following are the steps to get the TLS certificate setup going.
You can select one of the following approaches for the TLS certificate configurations:
-
Provide your own certificate: You can bring in your certificate on the management node and provide the absolute path of .pem and CA certificate files in the insight_setup_data.yaml file. The path must be provided as a value for the key 'PEM_PATH' in the insight_setup_data.yaml file.
-
Generate a new certificate on the node. You can create a new certificate on the node by running the following command:
This script searchs for the 'PEM_PATH' inside the insight_setup_data.yaml. As the path is not provided, it creates a new certificate inside install-dir/openstack-configs.# cd /root/installer-<tag_id>/insight/ #./tls_insight_cert_gen.py -f <path_to_insight_setup_data.yaml>/insight_setup_data.yaml.
Note
The self-signed certificate generation utility script is provided for lab/testing deployment only. Ensure that you do not use self-signed certificate generated by this utility for the production deployment.
Before you begin
Procedure
Step 1 |
Enter ip a to verify the br_mgmt and br_api interfaces are up and are bound to bond0 and bond1 respectively. For example:
|
||
Step 2 |
Run the following commands to copy the installer directory and the standalone insight_setup_data_yaml. |
||
Step 3 |
Modify the insight setup data according to your requirements.
|
||
Step 4 |
Save the edited insight_setup_data.yaml file. |
||
Step 5 |
Start the insight installation process.
|