Deploy OpenStack Keystone identity service
openstack-keystoneskillsetup L3★64
Tibsfox/gsd-skill-creator ↗What it does
Deploy and manage OpenStack identity and authentication
Best for
Cloud operators managing multi-tenant identity with federation and fine-grained role control
Inputs
- · Keystone catalog config
- · domain/user/project specs
- · LDAP/SAML federation
Outputs
- · auth tokens
- · service catalog
- · RBAC policies
Requires
- · Kolla-Ansible
- · Keystone API
- · LDAP or OAuth provider (optional)
- · Fernet encryption
Preconditions
Keystone service deployed; database initialized; Fernet keys distributed
Failure modes
Token expiry, LDAP sync failed, domain mismatch, RBAC policy too permissive
Trust signals
- · Keystone service architecture explained
- · Domain/project/user hierarchy documented
- · Token mechanics (fernet) explained
- · LDAP federation example provided