Chapter 4. Keystone Identity Service

In this chapter, we will cover the following:

Configuring Keystone with the MariaDB backend
Generating and configuring tokens PKIs
Configuring Keystone with Microsoft Active Directory and LDAP
Configuring Keystone caching with Memcached
Securing Keystone with SSL

Introduction

Keystone is an OpenStack project that provides Identity as a service to OpenStack services and components. Keystone is responsible for authenticating users and services, and authorizing access to OpenStack components.

Keystone also provides a service catalog that users and other services can query to discover the services OpenStack provides. For each service, Keystone Catalog returns an endpoint that is a network-accessible URL from where users ...

Get Production Ready OpenStack - Recipes for Successful Environments now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Production Ready OpenStack - Recipes for Successful Environments by Arthur Berezin

Chapter 4. Keystone Identity Service

Introduction

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly