Troubleshooting Keystone and authentication
Nothing is more frustrating than not being able to log in to your cluster to see what is going on. Thankfully, OpenStack offers an authentication override to bypass authentication and allow you to make Keystone calls to see services, endpoints, and other Keystone resources. This is called using the Keystone admin service token. In Chapter 3, Identity Management, we looked at creating a keystonerc
file. To use this service token to override authentication, you need to use a similar methodology. Start by getting the current service token value from the keystone.conf
file:
$ grep admin_token /etc/keystone/keystone.conf
The value that keystone's admin_token
is set to can be passed with a service endpoint ...
Get OpenStack Essentials now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.