++ openstack domain create --or-show --enable -f value -c id '--description=Service Domain for RegionOne/magnum' magnum + SERVICE_OS_DOMAIN_ID=3a70f52dc761472285180cf51d2234b0 + openstack domain show 3a70f52dc761472285180cf51d2234b0 +-------------+-------------------------------------+ | Field | Value | +-------------+-------------------------------------+ | id | 3a70f52dc761472285180cf51d2234b0 | | name | magnum | | enabled | True | | description | Service Domain for RegionOne/magnum | | options | {} | +-------------+-------------------------------------+ ++ openstack user create --or-show --enable -f value -c id --domain=3a70f52dc761472285180cf51d2234b0 --description 'Service User for RegionOne/magnum' --password=iy8Y5XNeRclHxAN1SkxDwtzwTlNYtXSo magnum-domain-RegionOne + SERVICE_OS_USERID=5be904aea3384aea918bdd7bfdcd169b + openstack user set --password=iy8Y5XNeRclHxAN1SkxDwtzwTlNYtXSo 5be904aea3384aea918bdd7bfdcd169b + openstack user show 5be904aea3384aea918bdd7bfdcd169b +---------------------+-----------------------------------+ | Field | Value | +---------------------+-----------------------------------+ | default_project_id | None | | domain_id | 3a70f52dc761472285180cf51d2234b0 | | email | None | | enabled | True | | id | 5be904aea3384aea918bdd7bfdcd169b | | name | magnum-domain-RegionOne | | description | Service User for RegionOne/magnum | | password_expires_at | None | | options | {} | +---------------------+-----------------------------------+ ++ openstack role show -f value -c id admin + SERVICE_OS_ROLE_ID=33bff17d023d4a1397c44fee219bf5d1 + openstack role add --domain=3a70f52dc761472285180cf51d2234b0 --user=5be904aea3384aea918bdd7bfdcd169b --user-domain=3a70f52dc761472285180cf51d2234b0 33bff17d023d4a1397c44fee219bf5d1 + openstack role assignment list --role=33bff17d023d4a1397c44fee219bf5d1 --user-domain=3a70f52dc761472285180cf51d2234b0 --user=5be904aea3384aea918bdd7bfdcd169b +----------------------------------+----------------------------------+-------+---------+----------------------------------+--------+-----------+ | Role | User | Group | Project | Domain | System | Inherited | +----------------------------------+----------------------------------+-------+---------+----------------------------------+--------+-----------+ | 33bff17d023d4a1397c44fee219bf5d1 | 5be904aea3384aea918bdd7bfdcd169b | | | 3a70f52dc761472285180cf51d2234b0 | | False | +----------------------------------+----------------------------------+-------+---------+----------------------------------+--------+-----------+