Articles tagged with #keystone




Identifying RabbitMQ objects

While I was looking for better RabbitMQ monitoring, I wondered which queues/exchanges/channels should I monitor? So I did this small exercise. stop all OpenStack services delete all RabbitMQ queues, exchanges and channels start services one by one KEYSTONE i keep all my users,password,tenants,roles in ldap …



keystone ldap part 2

If you get "unable to authorize user" when you try to get an (admin) LDAP user to authenticate You are missing the endpoint, yeah, LDAP users needs keystone endpoint to be set in order to authenticate. It doesn't matter if you user-role-list (using token auth) shows your user having admin …



keystone ldap part 1

keystone uses the most ugly tree i've ever seen a role: dn: cn=f7032e0da7574b0c82e3b96163429df4,ou=Roles,dc=openstack,dc=org objectClass: organizationalRole ou: sarasa cn: f7032e0da7574b0c82e3b96163429df4 is not ugly to use an UUID as a cn, that in fact is cool. the ugliness comes from using ou as container for …