I ran setup-openstack.yml playbook and encountered following error.
os: Ubuntu 16.04
version: Openstack Newton
TASK [os_keystone : Ensure service tenant] *************************************
FAILED - RETRYING: TASK: os_keystone : Ensure service tenant (5 retries left).
FAILED - RETRYING: TASK: os_keystone : Ensure service tenant (4 retries left).
FAILED - RETRYING: TASK: os_keystone : Ensure service tenant (3 retries left).
FAILED - RETRYING: TASK: os_keystone : Ensure service tenant (2 retries left).
FAILED - RETRYING: TASK: os_keystone : Ensure service tenant (1 retries left).
An exception occurred during task execution. To see the full traceback, use -vvv. The error was: keystoneauth1.exceptions.http.Forbidden: You are not authorized to perform the requested action: identity:list_domains (HTTP 403) (Request-ID: req-db4b4226-9e16-4a2b-b024-9421bc71c910)
fatal: [infra1_keystone_container-88df9f5f]: FAILED! => {"changed": false, "failed": true, "module_stderr": "Traceback (most recent call last):\n File \"/tmp/ansible_rTgFM1/ansible_module_keystone.py\", line 1459, in <module>\n main()\n File \"/tmp/ansible_rTgFM1/ansible_module_keystone.py\", line 1453, in main\n km.command_router()\n File \"/tmp/ansible_rTgFM1/ansible_module_keystone.py\", line 484, in command_router\n facts = action(variables=action_command['variables'])\n File \"/tmp/ansible_rTgFM1/ansible_module_keystone.py\", line 669, in ensure_tenant\n return self.ensure_project(variables)\n File \"/tmp/ansible_rTgFM1/ansible_module_keystone.py\", line 687, in ensure_project\n domain = self._get_domain_from_vars(variables_dict)\n File \"/tmp/ansible_rTgFM1/ansible_module_keystone.py\", line 617, in _get_domain_from_vars\n return self._get_domain(name=domain_name)\n File \"/tmp/ansible_rTgFM1/ansible_module_keystone.py\", line 624, in _get_domain\n for entry in self.keystone.domains.list():\n File \"/usr/local/lib/python2.7/dist-packages/keystoneclient/v3/domains.py\", line 90, in list\n return super(DomainManager, self).list(**kwargs)\n File \"/usr/local/lib/python2.7/dist-packages/keystoneclient/base.py\", line 74, in func\n return f(*args, **new_kwargs)\n File \"/usr/local/lib/python2.7/dist-packages/keystoneclient/base.py\", line 386, in list\n self.collection_key)\n File \"/usr/local/lib/python2.7/dist-packages/keystoneclient/base.py\", line 124, in _list\n resp, body = self.client.get(url, **kwargs)\n File \"/usr/local/lib/python2.7/dist-packages/keystoneauth1/adapter.py\", line 187, in get\n return self.request(url, 'GET', **kwargs)\n File \"/usr/local/lib/python2.7/dist-packages/keystoneauth1/adapter.py\", line 344, in request\n resp = super(LegacyJsonAdapter, self).request(*args, **kwargs)\n File \"/usr/local/lib/python2.7/dist-packages/keystoneauth1/adapter.py\", line 112, in request\n return self.session.request(url, method, **kwargs)\n File \"/usr/local/lib/python2.7/dist-packages/positional/__init__.py\", line 101, in inner\n return wrapped(*args, **kwargs)\n File \"/usr/local/lib/python2.7/dist-packages/keystoneclient/session.py\", line 444, in request\n raise exceptions.from_response(resp, method, url)\nkeystoneauth1.exceptions.http.Forbidden: You are not authorized to perform the requested action: identity:list_domains (HTTP 403) (Request-ID: req-db4b4226-9e16-4a2b-b024-9421bc71c910)\n", "module_stdout": "", "msg": "MODULE FAILURE"}
Last newton xenial ran perfectly fine: http://
I doubt this is a problem on our side, and is probably a configuration issue.
Could you give us more about the context, by giving a full run log for example?