Ask Your Question

Security of Keystone with LDAP/AD

asked 2016-07-30 13:12:28 -0500

Daniel03 gravatar image

Hello everyone,

I'm new in OpenStack and my task was to integrate an existing Active Directory into Keystone.

With the description from Red Hat, (

I was successfully but there are now some open questions and I hope somebody can explain it or give me a site where I can find it out.

  1. First I want to know how exactly OpenStack gets the Information from the AD and why I have to set one user with name and password.
  2. Second, why do I have to copy the certificate from the AD Server to the OpenStack Server and why I have to trust them? Does it not give an automatically function for this?
  3. Finally, does an exact description of the security (ssl for e.g.) function between the AD and OpenStack exist anywhere? I want to know how the authentication works.

Thanks in advance and best regards, Daniel

edit retag flag offensive close merge delete

1 answer

Sort by ยป oldest newest most voted

answered 2017-06-26 02:25:55 -0500

hi Daniel Its been a year since you brought these questions up. I am confused with those kinds of concept myself. Wonder if you could share your learings for these questions. Thx in advance

edit flag offensive delete link more

Get to know Ask OpenStack

Resources for moderators

Question Tools



Asked: 2016-07-30 13:12:28 -0500

Seen: 165 times

Last updated: Jun 26 '17