Landscape Keystone Cache Fix

Learn about configurations >

• admin-password | string

  Default: None

  Admin password. To be used for testing only. Randomly generated by default.

• admin-port | int

  Default: 35357

  Port the bind the Admin API server to

• admin-role | string

  Default: Admin

  Admin role to be associated with admin and service users

• admin-token | string

  Default: None

  Admin token. If set, this token will be used for all services instead of being generated per service.

• admin-user | string

  Default: admin

  Default admin user to create and manage

• config-file | string

  Default: /etc/keystone/keystone.conf

  Location of keystone configuration file

• database | string

  Default: keystone

  Database name

• database-user | string

  Default: keystone

  Database username

• debug | string

  Default: false

  Enable verbose logging

• enable-pki | string

  Default: false

  Enable PKI token signing (Grizzly and beyond)

• ha-bindiface | string

  Default: eth0

  Default network interface on which HA cluster will bind to communication with the other members of the HA Cluster.

• ha-mcastport | int

  Default: 5403

  Default multicast port number that will be used to communicate between HA Cluster nodes.

• https-service-endpoints | string

  Default: False

  Manage SSL certificates for all service endpoints.

• keystone-admin-role | string

  Default: Admin

  Role that allows admin operations (access to all operations)

• keystone-service-admin-role | string

  Default: KeystoneServiceAdmin

  Role that allows acting as service admin

• log-level | string

  Default: WARNING

  Log level (WARNING, INFO, DEBUG, ERROR)

• openstack-origin | string

  Default: distro

  Repository from which to install. May be one of the following: distro (default), ppa:somecustom/ppa, a deb url sources entry, or a supported Cloud Archive release pocket.

  Supported Cloud Archive sources include: cloud:precise-folsom, cloud:precise-folsom/updates, cloud:precise-folsom/staging, cloud:precise-folsom/proposed.

  Note that updating this setting to a source that is known to provide a later version of OpenStack will trigger a software upgrade.

• region | string

  Default: RegionOne

  OpenStack Region(s) - separate multiple regions with single space

• service-port | int

  Default: 5000

  Port the bind the API server to

• service-tenant | string

  Default: services

  Name of tenant to associate service credentials.

• ssl_ca | string

  SSL CA to use with the certificate and key provided - this is only required if you are providing a privately signed ssl_cert and ssl_key.

• ssl_cert | string

  SSL certificate to install and use for API ports. Setting this value and ssl_key will enable reverse proxying, point Keystone's entry in the Keystone catalog to use https, and override any certficiate and key issued by Keystone (if it is configured to do so).

• ssl_key | string

  SSL key to use with certificate specified as ssl_cert.

• token-expiry | string

  Default: 2017-02-05T00:00

  Expiration date of generated admin tokens

• use-https | string

  Default: no

  Use SSL for Keystone itself. Set to 'yes' to enable it.

• use-syslog | boolean

  By default, all services will log into their corresponding log files. Setting this to True will force all services to log to the syslog.

• verbose | string

  Default: false

  Enable debug logging

• vip | string

  Virtual IP to use to front keystone in ha configuration

• vip_cidr | int

  Default: 24

  Netmask that will be used for the Virtual IP

• vip_iface | string

  Default: eth0

  Network Interface where to place the Virtual IP