Ask Your Question
0

How can I specify a customised Security Group when creating tenant? [closed]

asked 2014-10-23 06:06:37 -0600

mickt gravatar image

updated 2014-10-23 06:46:32 -0600

I have icehouse on CentOS6.5 installed via packstack

I want to create a customised Security Group for a tenant during tenant creation. It seems that a default group with 4 rule is created when a tenant is created.

I can edit the default group or create a customised group with rules for the tenant. Can I configure specific rules during tenant creation?

edit retag flag offensive reopen merge delete

Closed for the following reason the question is answered, right answer was accepted by mickt
close date 2014-12-11 09:53:01.360906

1 answer

Sort by ยป oldest newest most voted
1

answered 2014-10-23 07:19:54 -0600

Sam Whitlock gravatar image

This is not possible from the python-keystoneclient command line tool. This can be inconvenient, but the idea is to keep each bit of functionality small and make it only do one thing (e.g. create a tenant, modify a security group's rules).

edit flag offensive delete link more

Comments

Ok. Can I delete the rules in the default Security Group and create new rules per tenant? The issue that I'm having is that I can't associate the default groups in the list with tenants,

mickt gravatar imagemickt ( 2014-10-23 07:27:26 -0600 )edit

I suppose I can query MySQL and do it that way. Just want to automate it in a script.

mickt gravatar imagemickt ( 2014-10-23 07:42:31 -0600 )edit

You mentioned "modify a security group's rules". Can this be done immediately after tenant creation and prior to accessing tenant in dashboard? It seems that the Security Group doesn't exist in DB until I access tenant in dashboard.

mickt gravatar imagemickt ( 2014-10-24 01:19:36 -0600 )edit

Not sure what the best way to do this would be. Best bet would be to look at the Keystone source code to see what it does when creating a tenant or user. You can probably locate its construction of the default security group somewhere in this process.

Sam Whitlock gravatar imageSam Whitlock ( 2014-10-30 15:01:49 -0600 )edit

Get to know Ask OpenStack

Resources for moderators

Question Tools

1 follower

Stats

Asked: 2014-10-23 06:06:37 -0600

Seen: 111 times

Last updated: Oct 23 '14