Ask Your Question

Revision history [back]

Hi, I don't really know if you can connect an external mysql identity provider to an existing keystone service. The current federation, only supports 2 protocols:

  • SAML ( Shibboleth and Mellon)

  • OpenID Connect

I know that with OpenID there are some projects that support MySQL as backend, but i don't know if supports existing MySQL instances. Maybe you can create a wrap to allow this, as a middleware adding dinamically the content of your MySQL to the OpenID MySQL, and then configure Keystone to use federation with OpenID.

Check this link for more information about federation:http://docs.openstack.org/developer/keystone/configure_federation.html

Hope it helps.

Regards, Eduardo