OpenStack: Managing Users with Keystone
Jump to navigation
Jump to search
Create Admin User
[root@server2-a ~]# keystone user-create --name admin --pass redhat
+----------+----------------------------------+
| Property | Value |
+----------+----------------------------------+
| email | |
| enabled | True |
| id | 3c685964950a4d6e927c08568d4d81b6 |
| name | admin |
| username | admin |
+----------+----------------------------------+Create Admin role
[root@server2-a ~]# keystone role-create --name admin
+----------+----------------------------------+
| Property | Value |
+----------+----------------------------------+
| id | aa517e1dd8734414bbf35e834a16d952 |
| name | admin |
+----------+----------------------------------+Create Admin tenant
[root@server2-a ~]# keystone tenant-create --name admin
+-------------+----------------------------------+
| Property | Value |
+-------------+----------------------------------+
| description | |
| enabled | True |
| id | 4413e2678de04e1a81ee4d9149a8d916 |
| name | admin |
+-------------+----------------------------------+Add user for the admin tenant to the admin role
[root@server2-a ~]# keystone user-role-add --user admin --role admin --tenant adminCreate keystonerc_admin script
[root@server2-a ~]# cat >> /root/keystonerc_admin << EOF
> unset SERVICE_TOKEN SERVICE_ENDPOINT
> export OS_USERNAME=admin
> export OS_TENANT_NAME=admin
> export OS_PASSWORD=redhat
> export OS_AUTH_URL=http://server2-a.example.com:35357/v2.0/
> export PS1='[\u@\h \W(keystone_admin)]\$ '
> EOFSource script
[root@server2-a ~]# source /root/keystonerc_admin
[root@server2-a ~(keystone_admin)]$
[root@server2-a ~(keystone_token)]$ keystone user-list
+----------------------------------+-------+---------+-------+
| id | name | enabled | email |
+----------------------------------+-------+---------+-------+
| 3c685964950a4d6e927c08568d4d81b6 | admin | True | |
+----------------------------------+-------+---------+-------+
[root@server2-a ~(keystone_token)]$