Hi Steve, Good explanation. It's much more clear on top of my mind now. Thanks a lot. Hugo 2015-04-07 21:14 GMT+08:00 Steve Martinelli <stevemar at ca.ibm.com>: > You can't really do this. The admin_token doesn't represent a user, and > has no role or > authorization associated with it. It just bypasses the authentication > process. > > If you have an admin user, grant the admin user the admin role on the new > domain, > and they should be able to create sample data. > > Thanks, > > Steve Martinelli > OpenStack Keystone Core > > Kuo Hugo <tonytkdk at gmail.com> wrote on 04/07/2015 06:53:25 AM: > > > From: Kuo Hugo <tonytkdk at gmail.com> > > To: "openstack at lists.openstack.org" <openstack at lists.openstack.org> > > Date: 04/07/2015 07:03 AM > > Subject: [Openstack] [Keystone Juno] How to grant ResellerAdmin > > permission(role) to an user ? > > > > Hi folks, > > > > I'm writing a script to generate sample data for users in different > > domains. I got a question about how to create a user who has the > > permission as the admin_token in keystone.conf ? > > > > Thanks // Hugo _______________________________________________ > > Mailing list: > http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack > > Post to : openstack at lists.openstack.org > > Unsubscribe : > http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack > -------------- next part -------------- An HTML attachment was scrubbed... URL: <http://lists.openstack.org/pipermail/openstack/attachments/20150407/6cd6c694/attachment.html>