Scoped token generation is failing in case of domain specific configuration in Keystone Juno

asked 2015-05-05 10:00:55 -0500

anil123 gravatar image

We've configured openldap server as a backend for default domain and admin domain is configured with MySQL backend. I've assigned a group to user in ldap and granted a keystone role in a specific domain to this ldap group. When I'm trying to generate scoped token (in above role granted domain) using ldap user from above ldap group it is giving me an 401 error. Seems like role assignment has not been done properly though I got 204 in response code after role assignment in above step and I can see that entry in 'Assignment' table in MySQL.

Note: I've configured ldap backend for identity and MySQL backend for assignment.

edit retag flag offensive close merge delete