Ask Your Question

Revision history [back]

admin - The admin role is global, not per project, so granting a user the admin role in any project gives the user administrative rights across the whole environment.

You can define actions for OpenStack service roles in the /etc/PROJECT/policy.json files. For example, define actions for Keystone service roles in the /etc/keystone/policy.json file.

image description

You can manage projects, users, and roles independently from each other.

for all projects in OpenStack you can define the policies by using above mentioned method

admin - The admin role is global, not per project, so granting a user the admin role in any project gives the user administrative rights across the whole environment.environment. Member and reader roles are the default roles in openstack

You can define actions for OpenStack service roles in the /etc/PROJECT/policy.json files. For example, define actions for Keystone service roles in the /etc/keystone/policy.json file.

image description

You can manage projects, users, and roles independently from each other.

for all projects in OpenStack OpenStack, you can define the policies by using above mentioned the above-mentioned method