<div dir="ltr">Hi Ageeleshwar<div><br></div><div>That's strange, I had to manually create the _member_ role, it wasn't listed with 'keystone role-list'.</div><div>Also, your MySQL query shows there was no pre-populated _member_ role, just the _member_ role I created manually:</div>

<div><br></div><div>"ricky@openstack:~$ mysql keystone -e 'select * from role;' -p</div><div>Enter password: </div><div>+----------------------------------+----------+-------+</div><div>| id                               | name     | extra |</div>

<div>+----------------------------------+----------+-------+</div><div>| 3b1826a9f1234fe58e45cd27aba27c1a | admin    | {}    |</div><div>| 8e76da0ec94844cda24bb3c77da4d23e | _member_ | {}    |</div><div>+----------------------------------+----------+-------+</div>

<div>"</div><div><br></div><div>Regards</div></div><div class="gmail_extra"><br><br><div class="gmail_quote">2014-06-02 16:06 GMT+02:00 Ageeleshwar Kandavelu <span dir="ltr"><<a href="mailto:Ageeleshwar.Kandavelu@csscorp.com" target="_blank">Ageeleshwar.Kandavelu@csscorp.com</a>></span>:<br>

<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">

<div>

<div style="direction:ltr;font-family:Tahoma;color:#000000;font-size:10pt">I recently installed icehouse and never created that role but it exists.

<br>

<br>

Please see if its present in the db. <br>

root@sun:~# mysql keystone -e 'select * from role;'<br>

+----------------------------------+----------+---------------------------------------------------------------------------+<br>

| id                               | name     | extra                                                                     |<br>

+----------------------------------+----------+---------------------------------------------------------------------------+<br>

| 9fe2ff9ee4384b1894a90878d3e92bab | _member_ | {"enabled": "True", "description": "Default role for project membership"} |<br>

+----------------------------------+----------+---------------------------------------------------------------------------+<br>

<br>

This is populated when you run keystone-manage db_sync<br>

<br>

Thank you,<br>

Ageeleshwar K<br>

<br>

<div style="font-family:Times New Roman;color:#000000;font-size:16px">

<hr>

<div style="direction:ltr"><font color="#000000" face="Tahoma"><div class=""><b>From:</b> Ricardo Carrillo Cruz [<a href="mailto:ricardo.carrillo.cruz@gmail.com" target="_blank">ricardo.carrillo.cruz@gmail.com</a>]<br>

</div><b>Sent:</b> Monday, June 02, 2014 2:27 PM<br>

<b>To:</b> Ageeleshwar Kandavelu<br>

<b>Cc:</b> <a href="mailto:openstack@lists.openstack.org" target="_blank">openstack@lists.openstack.org</a><br>

<b>Subject:</b> Re: [Openstack] _member_ role after keystone installation<br>

</font><br>

</div><div><div class="h5">

<div></div>

<div>

<div dir="ltr"><span style="font-family:arial,sans-serif;font-size:13px">Hi Ageeleshwar</span>

<div style="font-family:arial,sans-serif;font-size:13px"><br>

</div>

<div style="font-family:arial,sans-serif;font-size:13px">Yep, I linked together user 'admin' on tenant 'admin' with role 'admin' :</div>

<div style="font-family:arial,sans-serif;font-size:13px"><br>

</div>

<div style="font-family:arial,sans-serif;font-size:13px">

<div>ricky@openstack:~$ keystone user-role-list --user admin --tenant admin</div>

<div>+----------------------------------+-------+----------------------------------+----------------------------------+</div>

<div>|                id                |  name |             user_id              |            tenant_id             |</div>

<div>+----------------------------------+-------+----------------------------------+----------------------------------+</div>

<div>| 3b1826a9f1234fe58e45cd27aba27c1a | admin | 2fb0242b87f740d6a3bb1c71d9bf58bc | 1fd8105537394a57873f234ee27596fc |</div>

<div>+----------------------------------+-------+----------------------------------+----------------------------------+</div>

</div>

<div style="font-family:arial,sans-serif;font-size:13px"><br>

</div>

<div style="font-family:arial,sans-serif;font-size:13px">Regards</div>

</div>

<div class="gmail_extra"><br>

<br>

<div class="gmail_quote">2014-06-02 9:18 GMT+02:00 Ageeleshwar Kandavelu <span dir="ltr">

<<a href="mailto:Ageeleshwar.Kandavelu@csscorp.com" target="_blank">Ageeleshwar.Kandavelu@csscorp.com</a>></span>:<br>

<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">

<div>

<div style="direction:ltr;font-family:Tahoma;color:#000000;font-size:10pt">have you already added admin user to admin role. I think _member_ will already be there but you will not be able to view it until you use a user with admin role.<br>

<br>

Hope it makes sense<br>

<br>

Ageeleshwar K<br>

<div style="font-family:Times New Roman;color:#000000;font-size:16px">

<hr>

<div style="direction:ltr"><font color="#000000" face="Tahoma"><b>From:</b> Ricardo Carrillo Cruz [<a href="mailto:ricardo.carrillo.cruz@gmail.com" target="_blank">ricardo.carrillo.cruz@gmail.com</a>]<br>

<b>Sent:</b> Sunday, June 01, 2014 5:59 PM<br>

<b>To:</b> <a href="mailto:openstack@lists.openstack.org" target="_blank">openstack@lists.openstack.org</a><br>

<b>Subject:</b> [Openstack] _member_ role after keystone installation<br>

</font><br>

</div>

<div>

<div>

<div></div>

<div>

<div dir="ltr">Hi guys

<div><br>

</div>

<div>I'm currently installing Openstack in Ubuntu 14.04 by following the official guide, instead of just use devstack, for fun.</div>

<div><br>

</div>

<div>I succesfully installed keystone and I'm now at the user/tenant/roles creation step.</div>

<div>This is an excerpt from the guide:</div>

<div><br>

</div>

<div>"</div>

<div>

<div><i>By default, the Identity Service creates a special _member_ role. The OpenStack dashboard</i></div>

<div><i>automatically grants access to users with this role. You will give the admin user access to</i></div>

<div><i>this role in addition to the admin role.</i></div>

</div>

<div>"</div>

<div><br>

</div>

<div>However, I can't see that role after installing keystone:</div>

<div><br>

</div>

<div><snip></div>

<div>

<div>ricky@openstack:~$ keystone role-list</div>

<div>+----------------------------------+-------+</div>

<div>|                id                |  name |</div>

<div>+----------------------------------+-------+</div>

<div>| 3b1826a9f1234fe58e45cd27aba27c1a | admin |</div>

<div>+----------------------------------+-------+</div>

</div>

<div></snip></div>

<div><br>

</div>

<div>Do I need to create that _member_ role myself? If so, is this a doc bug?</div>

<div><br>

</div>

<div>Regards</div>

</div>

</div>

</div>

</div>

</div>

</div>

<a href="http://www.csscorp.com/common/email-disclaimer.php" target="_blank">http://www.csscorp.com/common/email-disclaimer.php</a>

</div>

</blockquote>

</div>

<br>

</div>

</div>

</div></div></div>

</div>

<a href="http://www.csscorp.com/common/email-disclaimer.php" target="_blank">http://www.csscorp.com/common/email-disclaimer.php</a>

</div>

</blockquote></div><br></div>