Comment 6 for bug 960977

the user-create should not be used as you do.
To create a user by keystone, the command should be:
keystone user-create --name=somethingelse --pass="xxx" --<email address hidden>

and then bind tenant, role and user together by:
keystone user-role-add --user userid --role roleid --tenant_id idforsomethingtenant

Why did your command get error like that? Because you are specifying the tenant of admin to your newly created tenantid, which admin account is not in.

You can add --debug to see what is sending behind scene.

+++++++++++++++++++++++++++++++++++++++++++++++++
jenkins@Soren-1:~/devstack$ keystone tenant-create --name=something
+-------------+----------------------------------+
| Property | Value |
+-------------+----------------------------------+
| description | None |
| enabled | True |
| id | 1fbcafe2a91049dab2321180ea6cf567 |
| name | something |
+-------------+----------------------------------+
jenkins@Soren-1:~/devstack$ keystone user-create --name=somethingelse --tenant_id=1fbcafe2a91049dab2321180ea6cf567
No handlers could be found for logger "keystoneclient.client"
Invalid tenant (HTTP 401)
jenkins@Soren-1:~/devstack$ keystone user-create --name=somethingelse --tenant_id 1fbcafe2a91049dab2321180ea6cf567
No handlers could be found for logger "keystoneclient.client"
Invalid tenant (HTTP 401)
jenkins@Soren-1:~/devstack$ keystone tenant-list
+----------------------------------+--------------------+---------+
| id | name | enabled |
+----------------------------------+--------------------+---------+
| 1fbcafe2a91049dab2321180ea6cf567 | something | True |
| 894f670456884611b82a88a9231a0c9d | invisible_to_admin | True |
| e0d1e304feda4250b235c2fa6061d010 | demo | True |
| e2daf9dea45f482a8877fa9fe6c2e7e5 | admin | True |
| f6c5aeb7ab884912a9fabd59e14265a9 | service | True |
+----------------------------------+--------------------+---------+
jenkins@Soren-1:~/devstack$