Creating a Keystone HCP tenant and user

After you have an HCP tenant, a Keystone HCP tenant with a name identical to the HCP tenant needs to be created.

Before you begin

To configure HCP to integrate with Keystone, you need a user account with the administrator role.

Procedure

  1. In the Keystone client, enter keystone tenant-create --name <hcp-tenant-name>

    NoteThe tenant you create on Keystone needs to have a name that is identical to its HCP counterpart.
  2. Add a user to the tenant by entering keystone user-create --name <tenant_username> --pass tenant-password

  3. After the user is created, grant the user the data access role by entering keystone user-role-add --user <tenant_user> --tenant <hcp-tenant-name> --role <data-access-role>

    HCP supports the admin, Member, and _member Keystone roles for data access.