0bf77eef8e
Change-Id: I753b0cd3912d2f9bc53c50906c05e90f2443d3f0 Signed-off-by: Suzana Fernandes <Suzana.Fernandes@windriver.com>
30 lines
1.0 KiB
ReStructuredText
30 lines
1.0 KiB
ReStructuredText
|
|
.. ibp1552572465781
|
|
.. _about-keystone-accounts:
|
|
|
|
--------------------------
|
|
Keystone Accounts Overview
|
|
--------------------------
|
|
|
|
|prod| uses the default ``admin`` project for managing all |prod| resources,
|
|
e.g. system, hosts, networks.
|
|
|
|
|prod| uses configured user accounts to manage access to |prod| resources, and
|
|
images in the Local Docker Registry.
|
|
|
|
You can create and manage Keystone users from the web management
|
|
interface, the CLI, or the |prod|'s Keystone REST API.
|
|
|
|
When a user is added in the central cloud of a Distributed Cloud system, it is
|
|
propagated to the managed subclouds. To check if this new user is already present
|
|
in a host, use the :command:`openstack user list` command.
|
|
|
|
In |prod|, the default authentication backend for Keystone users is the local
|
|
SQL Database Identity Service.
|
|
|
|
.. note::
|
|
All Keystone accounts are subject to system password rules. For
|
|
complete details on password rules, see :ref:`System Account Password
|
|
Rules <starlingx-system-accounts-system-account-password-rules>`.
|
|
|