Forum Discussion
2 Replies
Sort By
- eey0reCirrostratus
While iControl REST users have admin privileges by default, you can set up fine grained access control though it is a bit fiddly. You can create a custom "resource group" which defines all the REST endpoints (URIs) which the user will have access to and which operations (GET, POST, etc) which they will be allowed to perform.
Instructions for doing this are in the DevCentral article iControl REST Fine-Grained Role Based Access Control.
So to answer your question: the least privilege would be GET (read-only) of whichever few REST endpoints the user needs to be able to read from.
Going to bite my tongue about SolarWinds 😄
- newbieAltostratusThanks for your response...