taikun.cloud

Taikun OCP Guide

Table of Contents

Configuring Keystone

Identity sources

One of the most impactful decisions you’ll have to make when
configuring keystone is deciding how you want keystone to source your
identity data. Keystone supports several different choices that will
substantially impact how you’ll configure, deploy, and interact with
keystone.

You can also mix-and-match various sources of identity (see Domain-specific Configuration <domain_specific_configuration>
for an example). For example, you can store OpenStack service users and
their passwords in SQL, manage customers in LDAP, and authenticate
employees via SAML federation.