...
It was used a set of dummy users registered in the testbed IdP. In COmanage it was created some collaborations (CO) which have a corresponding project into OpenStack in order to map properly the users.
There was no need to create local accounts on the cloud framework, ephemeral users are using instead: it was created a set of rules that, depending on the entitlements provided by COmanage (ownership to the COs with a precise role), associate the external users to the right group (openstack project).
Schema
TBA