++ openstack domain create --or-show --enable -f value -c id '--description=Service Domain for RegionOne/magnum' magnum + SERVICE_OS_DOMAIN_ID=327bda65d1924b44ada67789aae4b1e5 + openstack domain show 327bda65d1924b44ada67789aae4b1e5 +-------------+-------------------------------------+ | Field | Value | +-------------+-------------------------------------+ | id | 327bda65d1924b44ada67789aae4b1e5 | | name | magnum | | enabled | True | | description | Service Domain for RegionOne/magnum | | options | {} | +-------------+-------------------------------------+ ++ openstack user create --or-show --enable -f value -c id --domain=327bda65d1924b44ada67789aae4b1e5 --description 'Service User for RegionOne/magnum' --password=6A2LcsurS4kUTYWsV3qpo15RVDkx5vyE magnum-domain-RegionOne + SERVICE_OS_USERID=ff5eddfa89cb4123837a817e349ea2a6 + openstack user set --password=6A2LcsurS4kUTYWsV3qpo15RVDkx5vyE ff5eddfa89cb4123837a817e349ea2a6 + openstack user show ff5eddfa89cb4123837a817e349ea2a6 +---------------------+-----------------------------------+ | Field | Value | +---------------------+-----------------------------------+ | default_project_id | None | | domain_id | 327bda65d1924b44ada67789aae4b1e5 | | email | None | | enabled | True | | id | ff5eddfa89cb4123837a817e349ea2a6 | | name | magnum-domain-RegionOne | | description | Service User for RegionOne/magnum | | password_expires_at | None | | options | {} | +---------------------+-----------------------------------+ ++ openstack role show -f value -c id admin + SERVICE_OS_ROLE_ID=af53314b58b44bf7a23f0f90ae659097 + openstack role add --domain=327bda65d1924b44ada67789aae4b1e5 --user=ff5eddfa89cb4123837a817e349ea2a6 --user-domain=327bda65d1924b44ada67789aae4b1e5 af53314b58b44bf7a23f0f90ae659097 + openstack role assignment list --role=af53314b58b44bf7a23f0f90ae659097 --user-domain=327bda65d1924b44ada67789aae4b1e5 --user=ff5eddfa89cb4123837a817e349ea2a6 +----------------------------------+----------------------------------+-------+---------+----------------------------------+--------+-----------+ | Role | User | Group | Project | Domain | System | Inherited | +----------------------------------+----------------------------------+-------+---------+----------------------------------+--------+-----------+ | af53314b58b44bf7a23f0f90ae659097 | ff5eddfa89cb4123837a817e349ea2a6 | | | 327bda65d1924b44ada67789aae4b1e5 | | False | +----------------------------------+----------------------------------+-------+---------+----------------------------------+--------+-----------+