Am 15.08.2014 10:22, schrieb sylecn:
so I create a special admin via
keystone user-create --name dsp --pass 123
keystone user-role-add --name dsp --role admin --tenant admin
then I unset OS_SERVICE_TOKEN
and try to get the user-role-list via
keystone --debug --os-username=dsp
--os-auth-url=http://172.23.56.78:35357/v2.0 --os-password=123
user-role-list
and just get no result.
But if I try to add some user-role-list entries, keystone tells,
that this combination still exists. For my opinion, I should get
some result for the keystone user-role-list or am I wrong?
With the debug-option on, I get this:
"user": {"username": "dsp", "roles_links": [], "id":
"11958972ebce4d97831f3139ab3465aa", "roles": [], "name": "dsp"},
"metadata": {"is_admin": 0, "roles": []}}}
Shouldn't the is_admin parameter set to 1?
Are you missing --os-tenant-name option or are you passing it via
environment variable? Make sure tenant name used to do auth is admin.
You should be able to tell which tenant you are using in the debug log.
--
/YY Inc. is hiring/ openstack and python developers. Interested? Check
http://soa.game.yy.com/jobs.html
--
Thanks,
Yuanle
Thats it
Thanks
Dan
_______________________________________________
Mailing list: http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack
Post to : openstack@lists.openstack.org
Unsubscribe : http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack
