Idea ID: 2808039

REST-API: It should be possible to give users "read only" access rights for UCMDB REST-API

Status : Accepted

Great news, this idea has been accepted on our product roadmap. Subscribe to receive updates. (This is not a formal commitment, and subject to change)


See status update history
over 1 year ago

When using the UCMDB REST-API it should be possible to give users "read only" access rights. Currently you need an integration user with "server administration privilege" for that.

Tags:

Labels:

API
Parents
  • Hi all,

    When setting up an integration user in ucmdb that is able to connect to the API, it has to be a superadmin to connect to the API. This off course grants the user unlimited rights in the application. It would be nice to have a way to use the API access, and still limmit functions for the user. Example: being able to create CI's and create relationships, but not being able to change infrastructure settings or logon to UI as a normal user. This would greatly improve security.

    Kind regards,

    Ron Bocken

    Team R2F- Zeus - Achmea

Comment
  • Hi all,

    When setting up an integration user in ucmdb that is able to connect to the API, it has to be a superadmin to connect to the API. This off course grants the user unlimited rights in the application. It would be nice to have a way to use the API access, and still limmit functions for the user. Example: being able to create CI's and create relationships, but not being able to change infrastructure settings or logon to UI as a normal user. This would greatly improve security.

    Kind regards,

    Ron Bocken

    Team R2F- Zeus - Achmea

Children