OpenStack Dashboard (Horizon)

Using Horizon for Keystone provisioning / management

Asked by Juda Thitron

I am evaluating OpenStack for our internal usage and I would appreciate a little help with information on Keystone management by Horizon.
We need following capabilities:
      - Create new user / delete / change password / get list of all users per-service (Nova, Swift, etc…)
      - Create new role
     - Assign user to role
      - Tenants management - get list / add / delete

Question information

Language:
English Edit question
Status:
Solved
For:
OpenStack Dashboard (Horizon) Edit question
Assignee:
No assignee Edit question
Solved by:
Gabriel Hurley
Solved:
Last query:
Last reply:
Revision history for this message
Gabriel Hurley (gabriel-hurley) said : 		#1

The only thing from that list which is not currently available in Horizon from that list is the creation of new roles. Those have to be added using the Keystone CLI.

All the user management and tenant management exists, you can grant users various roles on tenants, etc.

This is true in both Essex and Folsom, though the role/tenant/user management is improved in Folsom.

Role management CRUD in Horizon will be added in Grizzly.

Revision history for this message
Juda Thitron (jthitron) said : 		#2

Appreciate you help very much. One more clarification: what about Policies management - is it part of CRUD mentioned by you? We looking for centralized Policy management and ability to assign policy to User in Tenant by control panel - is it summing expected to be supported soon?

Thanks

Revision history for this message
Best Gabriel Hurley (gabriel-hurley) said : 		#3

That doesn't exist in OpenStack yet. It's part of the proposed Keystone V3 API but it has not been implemented. It's a tremendously high priority for Horizon, though, so as soon as it is the support will be there. I'm hoping it'll land in Grizzly, but it'll probably be towards the end of the release cycle.

Revision history for this message
Juda Thitron (jthitron) said : 		#4

Thanks Gabriel Hurley, that solved my question.