The sequence of setting up keystone v3?

I would like to set up keystone V3. After studying the reference from the Internet, some confused me.

This one creates an admin domain to v3 endpoint with default v2 policy.json first and then changes policy.json.

Another one changes policy.json and modifies endpoint to v3 in database first.

Which one should I follow? Thanks.

Solution

Both are doing the same thing but as you note, in a different order. The order doesn't matter as long as both the database and policy.json are updated. However you can see from the domains discussion that you may not get all the features in the dashboard for example with Identity v3. You can read more about policy.json in http://docs.openstack.org/admin-guide-cloud/content/identity-service-api-protection-with-role-based-access-control.html.

Python OpenStack SDK does not return Hypervisor hostname
Compute node not added (mapped?) in the nova cell (not listed as hypervisor)
How to get the terraform state file of already created virtual machines in openstack
How to get openstack version using Horizon or Openstack client?
OpenStack Pulumi integration - Cannot connect due to apparently lacking parameter in YAML file
How to reach a OPENSTACK instance directly without using floating IP
installing python packages without internet and using source code as .tar.gz and .whl
Terraform loops with both index and values
Openstack Heat - separate templates
Using python to connect to MongoDB in OpenStack
Does POST request to /v1/<account-name> in OpenStack Swift create that account?
Openstack - Change Admin password for the Dashboard
Openstack: Terraform multiple Instances with additional Disks - for_each list(object)
Terraform: openstack_compute_instance_v2 assign multiple networks dinamically
How to get Memory Usage from Windows Server 2012 R2 in OpenStack
OpenStack - KeyStone Requires Authentication 401
Issues with bash scripting syntax in Jenkins pipeline
How to list openstack user groups of a different domain?
rabbitmq cluster mistmatch hostname issue
Terraform cant create VM in openstack provider (No suitable endpoint could be found in the service catalog)
NoValidHost: No valid host was found. There are not enough hosts available
Unable to establish connection to http://controller:9696/v2.0/networks
Get uploaded object URL using openstack4j
Use OpenStack4j in an OSGi platform
rabbitmq access to vhost denied
Trouble creating a bridge device for OpenStack Rocky Linux 9.2 networking
Create a flavour with openstack SDK
Creating octavia Loadbalancer fails with "Nova failed to build the instance due to: Invalid key_name provided"
What is the difference between provider network and self-service network in OpenStack?
What issues arise when using Openstack Swift SAIO for Production use?