++ openstack domain create --or-show --enable -f value -c id '--description=Service Domain for RegionOne/magnum' magnum + SERVICE_OS_DOMAIN_ID=b279d977b78543eb9117081f3d1e00e8 + openstack domain show b279d977b78543eb9117081f3d1e00e8 +-------------+-------------------------------------+ | Field | Value | +-------------+-------------------------------------+ | id | b279d977b78543eb9117081f3d1e00e8 | | name | magnum | | enabled | True | | description | Service Domain for RegionOne/magnum | | options | {} | +-------------+-------------------------------------+ ++ openstack user create --or-show --enable -f value -c id --domain=b279d977b78543eb9117081f3d1e00e8 --description 'Service User for RegionOne/magnum' --password=mHeOfE4LBQjcrGWkQDL1HhYyiHKeVvKF magnum-domain-RegionOne + SERVICE_OS_USERID=2465e79dd9ff4af991bf9e8ce15a5889 + openstack user set --password=mHeOfE4LBQjcrGWkQDL1HhYyiHKeVvKF 2465e79dd9ff4af991bf9e8ce15a5889 + openstack user show 2465e79dd9ff4af991bf9e8ce15a5889 +---------------------+-----------------------------------+ | Field | Value | +---------------------+-----------------------------------+ | default_project_id | None | | domain_id | b279d977b78543eb9117081f3d1e00e8 | | email | None | | enabled | True | | id | 2465e79dd9ff4af991bf9e8ce15a5889 | | name | magnum-domain-RegionOne | | description | Service User for RegionOne/magnum | | password_expires_at | None | | options | {} | +---------------------+-----------------------------------+ ++ openstack role show -f value -c id admin + SERVICE_OS_ROLE_ID=a502a68d53f145bf8118f94467788bf5 + openstack role add --domain=b279d977b78543eb9117081f3d1e00e8 --user=2465e79dd9ff4af991bf9e8ce15a5889 --user-domain=b279d977b78543eb9117081f3d1e00e8 a502a68d53f145bf8118f94467788bf5 + openstack role assignment list --role=a502a68d53f145bf8118f94467788bf5 --user-domain=b279d977b78543eb9117081f3d1e00e8 --user=2465e79dd9ff4af991bf9e8ce15a5889 +----------------------------------+----------------------------------+-------+---------+----------------------------------+--------+-----------+ | Role | User | Group | Project | Domain | System | Inherited | +----------------------------------+----------------------------------+-------+---------+----------------------------------+--------+-----------+ | a502a68d53f145bf8118f94467788bf5 | 2465e79dd9ff4af991bf9e8ce15a5889 | | | b279d977b78543eb9117081f3d1e00e8 | | False | +----------------------------------+----------------------------------+-------+---------+----------------------------------+--------+-----------+