Ask Your Question

Revision history [back]

It turns out that Barbican requires users to have the creator role (or one of the other roles documented on the Barbican RBAC page) for creating and using secrets.

Unfortunately both the normal admin guide and the security guide fail to mention this detail. In fact, there is no Key Management section in these guides, although volume encryption is covered.

It turns out that Barbican requires users to have the creator role (or one of the other roles documented on the Barbican RBAC page) page http://docs.openstack.org/developer/barbican/admin-guide-cloud/access_control.html) for creating and using secrets.

Unfortunately both the normal admin guide and the security guide fail to mention this detail. In fact, there is no Key Management section in these guides, although volume encryption is covered.

It turns out that Barbican requires users to have the creator role (or one of the other roles documented on the Barbican RBAC page http://docs.openstack.org/developer/barbican/admin-guide-cloud/access_control.html) for creating and using secrets.

Unfortunately both the normal admin guide and the security guide non-developer guides on docs.openstack.org fail to mention this detail. In fact, there is no Key Management section in these guides, although volume encryption is covered.covered in the config guide.