openstack create user defaults to LDAP

asked 2016-09-09 15:47:06 -0500

notrobb gravatar image

I have a Liberty Openstack deployment that's working with KVM. We're setting up a 2nd region that will use VMWare.

I'm setting up the controller and have gotten to the point of creating service users. When I run

openstack user create --domain default --password-prompt vmw_nova

It returns "ERROR: openstack You are not authorized to perform the requested action: LDAP user create".

In the keystone logs, it looks like there's a lot of LDAP binding going on, so I'm guessing that it's trying to create an LDAP user? Is it possible to create a non-LDAP user now that keystone is using LDAP for authentication?

edit retag flag offensive close merge delete


It seems you need to bootstrap keystone firstly. For example, issue the command "keystone-manage bootstrap --bootstrap-password admin " with additional proper parameters.

Jared gravatar imageJared ( 2017-02-14 23:30:11 -0500 )edit