Thanks for the information, I'll definitely get to it. But right now
I'm having some trouble with domain_id in the keystone_policy.json. I
believe I'm also affected by this bug
https://bugs.launchpad.net/python-openstackclient/+bug/1538804
I switched to the stable/liberty policy.v3cloudsamp
We implemented something here at Symantec that sounds very similar to what
you¹re both talking about. We have three levels of Admin - Cloud, Domain,
and Project. If you¹re interested in checking it out, we actually
presented on this topic in Austin.
The presentation : https://www.youtube.com/watch
That's HMT or 'reseller use case', you can implement something similar
by using 'flat hierarchies', but by default, as you experienced, any
admin, even if under a tenant, is an admin of the whole
infrastructure.
Regards,
Pablo
+++ Venkatesh Kotipalli [20/06/16 17:05 +0530]:
Hi Folks,
Is it po
I believe you are trying to accomplish the same configuration as I do,
so I think domains are the answer. You can devide your cloud into
different domains and grant admin rights to specific users, which are
not authorized to see the other domains. Although I'm still not sure
if I did it cor
Hi Folks,
Is it possible to create a project admin in openstack.
As we identified when ever we created a project admin it will show entire
cloud (Like : other users and all services completely admin access). but i
want to see the particular project users,admins and control all the
services.
Guys
