Added extra options for service users * This user options allow to ignore some security compliance definitions of service users in case when security compliance is enabled. Change-Id: I123548008b5605ef4cb7d915cba0d600f0fc885b Related-PROD: PROD-28027

commit: b508ed40cb8ae41891bc4587448e56d5e05024c7 [log] [tgz]
author: Oleksandr Shyshko <oshyshko@mirantis.com> Wed Feb 27 13:23:06 2019 +0200
committer: Vasyl Saienko <vsaienko@mirantis.com> Thu Mar 14 02:00:49 2019 +0000
tree: 1edf3d55da8a8b1f9ba7331f8f9b2caec09cac48
parent: 2f509f545aa1138e1515b26adbae5bdf7b0834c8 [diff] [blame]
diff --git a/defaults/openstack/init.yml b/defaults/openstack/init.yml
index 8a6db83..b5b66e1 100644
--- a/defaults/openstack/init.yml
+++ b/defaults/openstack/init.yml

@@ -29,6 +29,12 @@
     openstack_version: queens
     openstack_old_version: ${_param:openstack_version}
     openstack_upgrade_enabled: False
+    # Security compliance user options
+    openstack_service_user_options:
+      ignore_change_password_upon_first_use: True
+      ignore_password_expiry: True
+      ignore_lockout_failure_attempts: False
+      lock_password: False
     # Cinder
     cinder_memcache_security_enabled: ${_param:openstack_memcache_security_enabled}
     cinder_memcache_secret_key: ''
commit	b508ed40cb8ae41891bc4587448e56d5e05024c7	[log] [tgz]
author	Oleksandr Shyshko <oshyshko@mirantis.com>	Wed Feb 27 13:23:06 2019 +0200
committer	Vasyl Saienko <vsaienko@mirantis.com>	Thu Mar 14 02:00:49 2019 +0000
tree	1edf3d55da8a8b1f9ba7331f8f9b2caec09cac48
parent	2f509f545aa1138e1515b26adbae5bdf7b0834c8 [diff] [blame]