openstack之user命令行用法

CheungWi
483 阅读3分钟

1)OpenStack 用户简介:

  • 系统用户是真实的人或者由特定应用使用的帐户
  • 用户可以是自服务用户,可以管理实例、卷、网络和新镜像,还可以执行其他任务
  • 用户也可以是由OpenStack 服务使用的帐户
  • 用户可以访问从属于自己分配到的项目的云资源,就如在任何操作系统中一样,用户可以具有文件和目录的权限
  • OpenStack 用户具有一组有限的权限和特权, 由分配给用户的用户角色定义。身份验证是确认用户身份的过程。就如任何Linux 操作系统一样,通过提供用户名和密码来登录系统。OSP 身份服务支持多种身份验证方式,包括用户名与密码、LDAP 以及其他外部身份验证方式
  • 身份验证成功后,用户获得访问OpenStack 服务所需的授权令牌
  • OpenStack 组: 组在身份服务APIV3 中引入,是域中的用户集合。与Linux 组相似,域中某个组被分配到的组角色会应用到该组中的所有用户。用户添加到组中后,便可使用与这个组所属域关联的身份验证方式。启用身份服务APIV3 后,可以利用Horizon 控制面板或OpenStack 统一CLI 创建组。使用openstack group create 命令创建组。–domain选项用于在特定域中创建组

user

Identity v2, v3

user create

Create new user

openstack user create
    [--domain <domain>]
    [--project <project> [--project-domain <project-domain>]]
    [--password <password>]
    [--password-prompt]
    [--email <email-address>]
    [--description <description>]
    [--enable | --disable]
    [--or-show]
    <user-name>

  • --domain`` <domain>

    Default domain (name or ID)

     

    New in version 3.

  • --project`` <project>

    Default project (name or ID)

  • --project-domain`` <project-domain>

    Domain the project belongs to (name or ID). This can be used in case collisions between project names exist.

  • --password`` <password>

    Set user password

  • `--password-prompt```

    Prompt interactively for password

  • --email`` <email-address>

    Set user email address

  • --description`` <description>

    User description

     

    New in version 3.

  • `--enable```

    Enable user (default)

  • `--disable```

    Disable user

  • `--or-show```

    Return existing user

    If the username already exist return the existing user data and do not fail.

  • <user-name>

    New user name

user delete

Delete user(s)

openstack user delete
    [--domain <domain>]
    <user> [<user> ...]

  • --domain`` <domain>

    Domain owning  (name or ID)

     

    New in version 3.

  • <user>

    User(s) to delete (name or ID)

user list

List users

openstack user list
    [--project <project>]
    [--domain <domain>]
    [--group <group> | --project <project>]
    [--long]

  • --project`` <project>

    Filter users by  (name or ID)

  • --domain`` <domain>

    Filter users by  (name or ID)

    Identity version 3 only

  • --group`` <group>

    Filter users by  membership (name or ID)

    Identity version 3 only

  • `--long```

    List additional fields in output

user set

Set user properties

openstack user set
    [--name <name>]
    [--project <project> [--project-domain <project-domain>]]
    [--password <password>]
    [--password-prompt]
    [--email <email-address>]
    [--description <description>]
    [--enable|--disable]
    <user>

  • --name`` <name>

    Set user name

  • --domain`` <domain>

    Domain the user belongs to (name or ID). This can be used in case collisions between user names exist.

     

    New in version 3.

  • --project`` <project>

    Set default project (name or ID)

  • --project-domain`` <project-domain>

    Domain the project belongs to (name or ID). This can be used in case collisions between project names exist.

  • --password`` <password>

    Set user password

  • `--password-prompt```

    Prompt interactively for password

  • --email`` <email-address>

    Set user email address

  • --description`` <description>

    Set user description

     

    New in version 3.

  • `--enable```

    Enable user (default)

  • `--disable```

    Disable user

  • <user>

    User to modify (name or ID)

user show

Display user details

openstack user show
    [--domain <domain>]
    <user>

  • --domain`` <domain>

    Domain owning  (name or ID)

     

    New in version 3.

  • <user>

    User to display (name or ID)

avatar
文章
阅读
粉丝