Part of your VMware Integrated OpenStack deployment configuration includes setting up authentication. Post-installation you can modify this configuration.

Verify that the new LDAP settings are valid.

1

In vCenter, select Home > VMware Integrated OpenStack > Manage.

2

Click the Settings tab.

3

Click Configure the Authentication Source.

The panel displays the current configuration.

4

Set the VMware Integrated OpenStack authentication source.

You can specify either Database or Active Directory as a LDAP Server.

If you select the Database option, create and confirm the administrator credentials in the Setup OpenStack admin user panel. These are the credentials the OpenStack administrator will use to log into the VMware Integrated OpenStack dashboard.

Option

Description

OpenStack admin user

Define the OpenStack administrative user name. This is the default administrative user name for logging in to the VMware Integrated OpenStack dashboard.

OpenStack admin password

Define the OpenStack administrative user password. This is the default administrative user password for logging in to the VMware Integrated OpenStack dashboard.

Confirm password

Reenter the password for confirmation.

If you select the Active Directory as a LDAP Server option, complete the LDAP server configuration, user query, and group query parameters. Each category includes a test button that enables you to validate your setting.

Category

Description

LDAP Server

Complete the following parameters to establish the LDAP session.

Encryption

Select encryption type from the drop-down menu.

Host name

Provide the host name for the LDAP server. To connect to multiple directories, you can enter multiple host names separated by commas.

Port

Specify the port on the host. The default is 636 for SSL.

Bind user

Provide the user name to allow the LDAP client access to the LDAP server.

Bind password

Provide the password to allow the LDAP client access to the LDAP server.

User Query

Provide the user query settings.

OpenStack admin user

Define the OpenStack administrative user name. This is the default administrative user name for logging in to the VMware Integrated OpenStack dashboard.

OpenStack admin password

Define the OpenStack administrative user password. This is the default administrative user password for logging in to the VMware Integrated OpenStack dashboard.

User tree DN

Search base for users.

User filter

LDAP search filter for users.

User objectclass

LDAP objectclass for users.

User ID attribute

LDAP attribute mapped to the user ID. This value must not be a multivalued attribute.

User name attribute

LDAP attribute mapped to the user name.

User mail attribute

LDAP attribute mapped to the user email.

User password attribute

LDAP attribute mapped to the user password.

Group Query

Provide the group query settings.

Group tree DN

Search base for groups.

Group filter

LDAP search filter for groups.

Group objectclass

LDAP objectclass for groups.

Group ID attribute

LDAP attribute mapped to the group ID.

Group name attribute

LDAP attribute mapped to the group name.

Group member attribute

LDAP attribute mapped to show group membership.

Group description attribute

LDAP attribute mapped to group description.

5

Click Save.