++ openstack domain create --or-show --enable -f value -c id '--description=Service Domain for RegionOne/magnum' magnum + SERVICE_OS_DOMAIN_ID=68f7a8ccc2d84c929dd99521392da8cc + openstack domain show 68f7a8ccc2d84c929dd99521392da8cc +-------------+-------------------------------------+ | Field | Value | +-------------+-------------------------------------+ | id | 68f7a8ccc2d84c929dd99521392da8cc | | name | magnum | | enabled | True | | description | Service Domain for RegionOne/magnum | | options | {} | +-------------+-------------------------------------+ ++ openstack user create --or-show --enable -f value -c id --domain=68f7a8ccc2d84c929dd99521392da8cc --description 'Service User for RegionOne/magnum' --password=MCrk9IIdKWq597h7VkOetobuFSm6nLHX magnum-domain-RegionOne + SERVICE_OS_USERID=539df762bae0407e91235a2b050b196b + openstack user set --password=MCrk9IIdKWq597h7VkOetobuFSm6nLHX 539df762bae0407e91235a2b050b196b + openstack user show 539df762bae0407e91235a2b050b196b +---------------------+-----------------------------------+ | Field | Value | +---------------------+-----------------------------------+ | default_project_id | None | | domain_id | 68f7a8ccc2d84c929dd99521392da8cc | | email | None | | enabled | True | | id | 539df762bae0407e91235a2b050b196b | | name | magnum-domain-RegionOne | | description | Service User for RegionOne/magnum | | password_expires_at | None | | options | {} | +---------------------+-----------------------------------+ ++ openstack role show -f value -c id admin + SERVICE_OS_ROLE_ID=f650ff78c37c4fb983692d44a0a36649 + openstack role add --domain=68f7a8ccc2d84c929dd99521392da8cc --user=539df762bae0407e91235a2b050b196b --user-domain=68f7a8ccc2d84c929dd99521392da8cc f650ff78c37c4fb983692d44a0a36649 + openstack role assignment list --role=f650ff78c37c4fb983692d44a0a36649 --user-domain=68f7a8ccc2d84c929dd99521392da8cc --user=539df762bae0407e91235a2b050b196b +----------------------------------+----------------------------------+-------+---------+----------------------------------+--------+-----------+ | Role | User | Group | Project | Domain | System | Inherited | +----------------------------------+----------------------------------+-------+---------+----------------------------------+--------+-----------+ | f650ff78c37c4fb983692d44a0a36649 | 539df762bae0407e91235a2b050b196b | | | 68f7a8ccc2d84c929dd99521392da8cc | | False | +----------------------------------+----------------------------------+-------+---------+----------------------------------+--------+-----------+