Skip to Main Content
Extending OpenStack
book

Extending OpenStack

by Omar Khedher
February 2018
Intermediate to advanced content levelIntermediate to advanced
300 pages
6h 17m
English
Packt Publishing
Content preview from Extending OpenStack

Keystone as SP – SAML

The next federated identity layout outsources the management of users and service authentication to an external IdP by using SAML. This federation setup can be briefly described with the following steps, as illustrated in the following diagram:

Consider the steps as follows:

  1. An OpenStack user or a service requests a resource.
  2. As the SP, the Keystone service captures the request and redirects it to the Single Sign-On (SSO) service.
  3. The external IdP (with user/service request SSO request) generates a SAML document response.
  4. The external IdP returns the SAML assertion to the requesting user/service.
  5. The user/service requests ...
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.
Start your free trial

You might also like

Containers in OpenStack

Containers in OpenStack

Pradeep Kumar Singh, Madhuri Kumari

Publisher Resources

ISBN: 9781786465535Supplemental Content