Books & Videos

Table of Contents

  1. Chapter 1 Fundamental Keystone Topics

    1. 1.1 Keystone Concepts

    2. 1.2 Identity

    3. 1.3 Authentication

    4. 1.4 Access Management and Authorization

    5. 1.5 Backends and Services

    6. 1.6 FAQs

  2. Chapter 2 Let’s Use Keystone!

    1. 2.1 Getting DevStack

    2. 2.2 Basic Keystone Operations Using OpenStackClient

    3. 2.3 Basic Keystone Operations Using Horizon

    4. 2.4 Tips, Common Pitfalls, and Troubleshooting

  3. Chapter 3 Token Formats

    1. 3.1 History of Keystone Token Formats

    2. 3.2 UUID Tokens

    3. 3.3 PKI Tokens

    4. 3.4 Fernet Tokens

    5. 3.5 Tips, Common Pitfalls, and Troubleshooting

  4. Chapter 4 LDAP

    1. 4.1 Approach to LDAP Integration

    2. 4.2 Configuring Keystone to Integrate with LDAP

    3. 4.3 Multiple Domains and LDAP

    4. 4.4 A Practical Guide to Using Multi-Domains and Keystone

    5. 4.5 Projects, Roles, and Assignments from LDAP (Just Say NO!)

    6. 4.6 Tips, Common Pitfalls, and Troubleshooting

  5. Chapter 5 Federated Identity

    1. 5.1 Approach to Federation

    2. 5.2 Translating User Attributes to Keystone Concepts

    3. 5.3 Authentication Flow: What’s It Look Like?

    4. 5.4 Single Sign-On

    5. 5.5 A Practical Guide to Federating Identities for IBM WebSphere Liberty and Bluepages

    6. 5.6 A Practical Guide to Setting Up SSO with Google

    7. 5.7 Tips, Common Pitfalls, and Troubleshooting

  6. Chapter 6 Future Work

    1. 6.1 Multi-Factor Authentication

    2. 6.2 Integration with Horizon for Multi-Region Keystone to Keystone Federation Support

    3. 6.3 Using LDAP as a Federated Identity Provider

    4. 6.4 Replacement of Service Users with X.509 Certificates and Barbican Integration

    5. 6.5 Centralized Policy and Distribution

    6. 6.6 Integrating with Other Technologies