++ openstack domain create --or-show --enable -f value -c id '--description=Service Domain for RegionOne/magnum' magnum + SERVICE_OS_DOMAIN_ID=9c8f3699adaf4cedb675d02794b4d9e5 + openstack domain show 9c8f3699adaf4cedb675d02794b4d9e5 +-------------+-------------------------------------+ | Field | Value | +-------------+-------------------------------------+ | id | 9c8f3699adaf4cedb675d02794b4d9e5 | | name | magnum | | enabled | True | | description | Service Domain for RegionOne/magnum | | options | {} | +-------------+-------------------------------------+ ++ openstack user create --or-show --enable -f value -c id --domain=9c8f3699adaf4cedb675d02794b4d9e5 --description 'Service User for RegionOne/magnum' --password=f9byyqAf5UIB6zzocvJ5hFkja6yii3bu magnum-domain-RegionOne + SERVICE_OS_USERID=4cc90e66507e463a8a06a5d250d39596 + openstack user set --password=f9byyqAf5UIB6zzocvJ5hFkja6yii3bu 4cc90e66507e463a8a06a5d250d39596 + openstack user show 4cc90e66507e463a8a06a5d250d39596 +---------------------+-----------------------------------+ | Field | Value | +---------------------+-----------------------------------+ | default_project_id | None | | domain_id | 9c8f3699adaf4cedb675d02794b4d9e5 | | email | None | | enabled | True | | id | 4cc90e66507e463a8a06a5d250d39596 | | name | magnum-domain-RegionOne | | description | Service User for RegionOne/magnum | | password_expires_at | None | | options | {} | +---------------------+-----------------------------------+ ++ openstack role show -f value -c id admin + SERVICE_OS_ROLE_ID=a201e499f4144720b984a1801cc8ff7e + openstack role add --domain=9c8f3699adaf4cedb675d02794b4d9e5 --user=4cc90e66507e463a8a06a5d250d39596 --user-domain=9c8f3699adaf4cedb675d02794b4d9e5 a201e499f4144720b984a1801cc8ff7e + openstack role assignment list --role=a201e499f4144720b984a1801cc8ff7e --user-domain=9c8f3699adaf4cedb675d02794b4d9e5 --user=4cc90e66507e463a8a06a5d250d39596 +----------------------------------+----------------------------------+-------+---------+----------------------------------+--------+-----------+ | Role | User | Group | Project | Domain | System | Inherited | +----------------------------------+----------------------------------+-------+---------+----------------------------------+--------+-----------+ | a201e499f4144720b984a1801cc8ff7e | 4cc90e66507e463a8a06a5d250d39596 | | | 9c8f3699adaf4cedb675d02794b4d9e5 | | False | +----------------------------------+----------------------------------+-------+---------+----------------------------------+--------+-----------+