...
When a project is about to be removed, all users should be removed, and all resources should be deleted before the project is deleted. This is a suggested list of actions:
- Remove all users and groups but your own from the project
- Delete all heat stacks
- Deattach and delete all volumes
- Delete all virtual machines
- Delete all ports
- Delete all firewall-rules
- Delete all firewall-policies
- Delete all firewalls
- Delete all routers
- Delete all subnets
- Delete all networks
- Delete all security groups
- Delete all floating IP's
- Remove your user from the project
- Delete the project
...
For temporary users a similar approach as with service users can be performed, where the description of the user should indicate the reason for this being a local user, and not a NTNU user. The user should also be deleted as soon as it is not necessary anymore.
Give a user or group administrative privileges
To give full administration access to a user, he needs to be an admin member of the admin project.
Code Block | ||
---|---|---|
| ||
$ openstack role add --project admin --user <username> admin --user-domain NTNU
$ openstack role add --project admin --group <groupname> admin --group-domain NTNU |