openstack/openstack-ansible
Code Issues Proposed changes
openstack-ansible/doc/source/install-guide/configure-federation.rst
Alexandra 71554ca7cf DOCS: Configuration section - cleanup 
As per discussion in the OSA docs summit session, clean up
of installation guide. This fixes typos, minor RST mark up
changes, and passive voice.

This patch also merges a some of the sections into the larger
chapter. This is in an effort to remove multiple smaller
files.

This patch is the first of many to avoid major conflicts.

Change-Id: I38daa515ba47fde7719cd0bd3e0e40c2cd0f39f1
2016-05-12 13:13:44 +00:00

1.9 KiB
Raw Blame History

Home OpenStack-Ansible Installation Guide

Configuring Identity service (keystone) federation (optional)

configure-federation-wrapper configure-federation-sp-overview.rst configure-federation-sp.rst configure-federation-idp.rst configure-federation-idp-adfs.rst configure-federation-mapping.rst configure-federation-use-case.rst

In keystone federation, the identity provider (IdP) and service provider (SP) exchange information securely to enable a user on the IdP cloud to access resources of the SP cloud.

Note

For the Kilo release of OpenStack, federation is only partially supported. It is possible to perform a federated login using command line clients and scripting, but Dashboard (horizon) does not support this functionality.

The following procedure describes how to set up federation.

  1. Configure Identity Service (keystone) service providers.

  2. Configure the identity provider:

  3. Configure the service provider:

  4. Run the authentication wrapper to use Identity Service to Identity Service federation.

    For examples of how to set up keystone to keystone federation, see the Identity Service to Identity Service federation example use-case.