++ openstack domain create --or-show --enable -f value -c id '--description=Service Domain for RegionOne/heat' heat + SERVICE_OS_DOMAIN_ID=2a280e4bac8345d0a9b55e0518a07f7c + openstack domain show 2a280e4bac8345d0a9b55e0518a07f7c +-------------+-----------------------------------+ | Field | Value | +-------------+-----------------------------------+ | id | 2a280e4bac8345d0a9b55e0518a07f7c | | name | heat | | enabled | True | | description | Service Domain for RegionOne/heat | | options | {} | +-------------+-----------------------------------+ ++ openstack user create --or-show --enable -f value -c id --domain=2a280e4bac8345d0a9b55e0518a07f7c --description 'Service User for RegionOne/heat' --password=1gYHXnOTeD97t3I3do0lutnkdFoQ01wT heat-stack-user-RegionOne + SERVICE_OS_USERID=e58b65ed98d7483fa8483a7a6631f3b2 + openstack user set --password=1gYHXnOTeD97t3I3do0lutnkdFoQ01wT e58b65ed98d7483fa8483a7a6631f3b2 + openstack user show e58b65ed98d7483fa8483a7a6631f3b2 +---------------------+----------------------------------+ | Field | Value | +---------------------+----------------------------------+ | default_project_id | None | | domain_id | 2a280e4bac8345d0a9b55e0518a07f7c | | email | None | | enabled | True | | id | e58b65ed98d7483fa8483a7a6631f3b2 | | name | heat-stack-user-RegionOne | | description | Service User for RegionOne/heat | | password_expires_at | None | | options | {} | +---------------------+----------------------------------+ ++ openstack role show -f value -c id admin + SERVICE_OS_ROLE_ID=082c80e45c6c47c18949841f8cf67698 + openstack role add --domain=2a280e4bac8345d0a9b55e0518a07f7c --user=e58b65ed98d7483fa8483a7a6631f3b2 --user-domain=2a280e4bac8345d0a9b55e0518a07f7c 082c80e45c6c47c18949841f8cf67698 + openstack role assignment list --role=082c80e45c6c47c18949841f8cf67698 --user-domain=2a280e4bac8345d0a9b55e0518a07f7c --user=e58b65ed98d7483fa8483a7a6631f3b2 +----------------------------------+----------------------------------+-------+---------+----------------------------------+--------+-----------+ | Role | User | Group | Project | Domain | System | Inherited | +----------------------------------+----------------------------------+-------+---------+----------------------------------+--------+-----------+ | 082c80e45c6c47c18949841f8cf67698 | e58b65ed98d7483fa8483a7a6631f3b2 | | | 2a280e4bac8345d0a9b55e0518a07f7c | | False | +----------------------------------+----------------------------------+-------+---------+----------------------------------+--------+-----------+