Hi How does the keystone role stuff work in real production deployment? Every service team considers the user who has role with the name "admin" as "admin". So basically I can't have a separate admin user for keystone, nova, swift. Isn't this a security issue? Given a project how to isolate the admin for each service. Thanks Haneef -------------- next part -------------- An HTML attachment was scrubbed... URL: <http://lists.openstack.org/pipermail/openstack/attachments/20140320/2f08ed9d/attachment.html>