Procedure

1. Log in to the CloudTable management console at https://console.huaweicloud.com/cloudtable/?locale=en-us.
2. Click Purchase Cluster. The Purchase Cluster page is displayed.

   For example, the related parameter configurations are as follows:

   • Billing Mode: Use the default value.
   • Region: Use the default value.
   • AZ: Use the default value.
   • Name: Enter a cluster name, for example, cloudtable-demo.
   • I/O Type: Use the default value.
   • VPC: You can use the existing VPC. If you do not have a VPC, click View VPC. On the VPC management console that is displayed, create a VPC. Then you can select the newly created VPC from the VPC drop-down list on CloudTable. For details about how to create a VPC, see Creating a VPC in the Virtual Private Cloud User Guide.
   • Subnet: When you create a VPC, a subnet is created by default. You can select a subnet name.
   • Security Group: You can use the default value and ensure that the rules listed in Figure 1 exist in the inbound rules of the selected security group.
     • Protocol & Port: All
     • Type: IPv4
     • Source: Local security group (that is, the security group to which the CloudTable cluster belongs)
     Figure 1 Security group rule
     

     If the rule does not exist, add the preceding rules to the security group according to Figure 2.

     Figure 2 Adding an inbound rule
     

     If you are concerned that the default security group has network security risks, you can set as few open ports as possible in the security group. However, you need to ensure that the security group rules listed in Table 1 exist in the selected security group.

     Table 1 Customized security rules

     Direction	Protocol	Port/Range	Source/Security Group	Usage
     Outbound	All	All	0.0.0.0/0	Permit in the outbound direction
     Inbound	TCP	22	0.0.0.0/0	ECS remote login port (Linux)
     	TCP	3389	0.0.0.0/0	ECS remote desktop service (Windows)
     	TCP	16000	Security group of the CloudTable cluster	HMaster RPC port
     	TCP	16010		HMaster web UI port
     	TCP	16020		RegionServer RPC port
     	TCP	16030		RegionServer web UI port
     	TCP	2181		ZooKeeper client connection monitoring port
     	TCP	2888		Follower connection monitoring port
     	TCP	3888		ZooKeeper election port
     	TCP	2000		HAgent access port
     	TCP	8085		RestServer access port
     	TCP	9600		RestServer access port
     	TCP	4242		OpenTSDB access port

   • CloudTable Version: Use the default value.
   • HBase Version: Select 1.3.1 from the drop-down list.
   • Advanced Feature: You can enable the following advanced features. If the OpenTSDB advanced feature is enabled, it will be charged. In this example, all advanced features are disabled.
     • OpenTSDB 2.3.0: It is an open source OpenTSDB time series database.
     • GeoMesa: It is a distributed, scalable, open source spatiotemporal database based on HBase.
   • IAM Authentication: This function is disabled by default. If you need a security cluster with IAM authentication enabled, enable it. shows that it is enabled.

     Note: The IAM authentication function can be enabled or disabled only when you create a cluster. It cannot be enabled or disabled after the cluster has been created.

     

     The IAM authentication mode provides better security than the normal mode. Therefore, you are advised to enable IAM authentication for the CloudTable cluster and use IAM authentication in client or application code to connect to the cluster.

   • RS units: Use the default value 2.

3. Click Next.
4. Confirm the details of the order and click Submit. The cluster creation task is submitted successfully.

   Creating a cluster takes some time. The initial status of the cluster is Creating. After the cluster is created, the cluster status changes to In service.