Dieser Inhalt ist in der von Ihnen ausgewählten Sprache nicht verfügbar.

Chapter 12. Identity (keystone) Parameters


Expand
ParameterDescription

AdminEmail

The email for the OpenStack Identity (keystone) admin account. The default value is: admin@example.com

AdminPassword

The password for the OpenStack Identity (keystone) admin account.

AdminToken

The OpenStack Identity (keystone) secret and database password.

KeystoneCredential0

The first OpenStack Identity (keystone) credential key. Must be a valid key.

KeystoneCredential1

The second OpenStack Identity (keystone) credential key. Must be a valid key.

KeystoneCronTokenFlushDestination

Cron to purge expired tokens - Log destination. The default value is: /var/log/keystone/keystone-tokenflush.log

KeystoneCronTokenFlushEnsure

Cron to purge expired tokens - Ensure. The default value is: present

KeystoneCronTokenFlushHour

Cron to purge expired tokens - Hour. The default value is: *

KeystoneCronTokenFlushMaxDelay

Cron to purge expired tokens - Max Delay. The default value is: 0

KeystoneCronTokenFlushMinute

Cron to purge expired tokens - Minute. The default value is: 1

KeystoneCronTokenFlushMonth

Cron to purge expired tokens - Month. The default value is: *

KeystoneCronTokenFlushMonthday

Cron to purge expired tokens - Month Day. The default value is: *

KeystoneCronTokenFlushUser

Cron to purge expired tokens - User. The default value is: keystone

KeystoneCronTokenFlushWeekday

Cron to purge expired tokens - Week Day. The default value is: *

KeystoneEnableDBPurge

Whether to create cron job for purging soft deleted rows in OpenStack Identity (keystone) database. The default value is: True

KeystoneFernetKey0

The first OpenStack Identity (keystone) fernet key. Must be a valid key.

KeystoneFernetKey1

The second OpenStack Identity (keystone) fernet key. Must be a valid key.

KeystoneFernetKeys

Mapping containing OpenStack Identity (keystone) fernet keys and their paths.

KeystoneFernetMaxActiveKeys

The maximum active keys in the OpenStack Identity (keystone) fernet key repository. The default value is: 5

KeystoneLDAPBackendConfigs

Hash containing the configurations for the LDAP backends configured in keystone.

KeystoneLDAPDomainEnable

Trigger to call ldap_backend puppet keystone define. The default value is: False

KeystoneNotificationDriver

Comma-separated list of Oslo notification drivers used by Keystone. The default value is: ['messaging']

KeystoneNotificationFormat

The OpenStack Identity (keystone) notification format. The default value is: basic

KeystoneNotificationTopics

OpenStack Identity (keystone) notification topics to enable.

KeystoneSSLCertificate

Keystone certificate for verifying token validity.

KeystoneSSLCertificateKey

Keystone key for signing tokens.

KeystoneTokenProvider

The OpenStack Identity (keystone) token format. The default value is: fernet

KeystoneWorkers

Set the number of workers for the OpenStack Identity (keystone) service. The default value is equal to the number of CPU cores on the node. Note that more workers creates a larger number of processes on systems, which results in excess memory consumption. It is recommended to choose a suitable non-default value on systems with high CPU core counts.

ManageKeystoneFernetKeys

Whether director should manage the OpenStack Identity (keystone) fernet keys or not. If set to True, the fernet keys will get the values from the saved keys repository in OpenStack Workflow (mistral) from the KeystoneFernetKeys variable. If set to false, only the stack creation initializes the keys, but subsequent updates will not touch them. The default value is: True

NotificationDriver

Driver or drivers to handle sending notifications. The default value is: messagingv2

Nach oben
Red Hat logoGithubredditYoutubeTwitter

Lernen

Testen, kaufen und verkaufen

Communitys

Über Red Hat Dokumentation

Wir helfen Red Hat Benutzern, mit unseren Produkten und Diensten innovativ zu sein und ihre Ziele zu erreichen – mit Inhalten, denen sie vertrauen können. Entdecken Sie unsere neuesten Updates.

Mehr Inklusion in Open Source

Red Hat hat sich verpflichtet, problematische Sprache in unserem Code, unserer Dokumentation und unseren Web-Eigenschaften zu ersetzen. Weitere Einzelheiten finden Sie in Red Hat Blog.

Über Red Hat

Wir liefern gehärtete Lösungen, die es Unternehmen leichter machen, plattform- und umgebungsübergreifend zu arbeiten, vom zentralen Rechenzentrum bis zum Netzwerkrand.

Theme

© 2025 Red Hat