osc identity user create

Creates a user.

Relationship: https://docs.openstack.org/api/openstack-identity/3/rel/users

Usage: osc identity user create [OPTIONS] --name <NAME>

Options:

  • --default-project-id <DEFAULT_PROJECT_ID> — The ID of the default project for the user. A user’s default project must not be a domain. Setting this attribute does not grant any actual authorization on the project, and is merely provided for convenience. Therefore, the referenced project does not need to exist within the user domain. (Since v3.1) If the user does not have authorization to their default project, the default project is ignored at token creation. (Since v3.1) Additionally, if your default project is not valid, a token is issued without an explicit scope of authorization

  • --description <DESCRIPTION> — The resource description

  • --domain-id <DOMAIN_ID> — The ID of the domain of the user. If the domain ID is not provided in the request, the Identity service will attempt to pull the domain ID from the token used in the request. Note that this requires the use of a domain-scoped token

  • --enabled <ENABLED> — If the user is enabled, this value is true. If the user is disabled, this value is false

    Possible values: true, false

  • --federated <JSON> — List of federated objects associated with a user. Each object in the list contains the idp_id and protocols. protocols is a list of objects, each of which contains protocol_id and unique_id of the protocol and user respectively. For example:

  • --name <NAME> — The user name. Must be unique within the owning domain

  • --ignore-change-password-upon-first-use <IGNORE_CHANGE_PASSWORD_UPON_FIRST_USE>

    Possible values: true, false

  • --ignore-lockout-failure-attempts <IGNORE_LOCKOUT_FAILURE_ATTEMPTS>

    Possible values: true, false

  • --ignore-password-expiry <IGNORE_PASSWORD_EXPIRY>

    Possible values: true, false

  • --ignore-user-inactivity <IGNORE_USER_INACTIVITY>

    Possible values: true, false

  • --lock-password <LOCK_PASSWORD>

    Possible values: true, false

  • --multi-factor-auth-enabled <MULTI_FACTOR_AUTH_ENABLED>

    Possible values: true, false

  • --multi-factor-auth-rules <MULTI_FACTOR_AUTH_RULES>

  • --password <PASSWORD> — The password for the user