What kind of account do I need to access the REST API?

Question

I'm having issues in accessing the API, I think.
I got Error 401 whenever I use my credentials that I believe has admin privileges already. Is there a way to access the API without using the "admin" account?&nbsp;
Edit: How do I check if my account has admin privileges?&nbsp;
Below is my code:&nbsp;
import requests&nbsp;
requests.packages.urllib3.disable_warnings()&nbsp;
uname = 'myaccount'&nbsp;
pw = 'mypassword'&nbsp;
req = requests.session()&nbsp;
req.auth = (uname, pw)&nbsp;
req.verify = False&nbsp;
req.headers.update({'Content-Type': 'application/json'})&nbsp;
uri = 'https://[host]/mgmt/tm/ltm'&nbsp;
response = req.get(uri)&nbsp;
print(response.text)&nbsp;
Result:
{"code":401,"message":"Authorization failed: user= resource=/mgmt/tm/ltm verb=GET......."}&nbsp;

only1masterbla1 · Answer

Admin privilege would definitely work. I guess [host] is replaced by F5 management IP in your case. Also, script has "import requests, json"&nbsp;

mel_339767 · Answer

@Only1masterblaster: Thanks for the response. I intentionally do the "[host]" thing to hide the real ip. I'm not yet importing json module as I'm not parsing any json data yet since the error message is clear. 
How would I check if my account has admin privileges to access the REST API.&nbsp;

leonardo_souza · Answer

If you login to the F5 via HTTPS (GUI), it will tell at the top your user and the type of your account.
I remember a friend saying that REST initially required admin role account when released in 11.5.0, but in 11.6.0 (I think) other users could access.
I tried to confirm that looking the release notes, but I could not find anything in relation to that.
Anyway, just try to login to REST via HTTPS, using a browser.
https:///mgmt/toc
That will tell you if your account will work with REST or not.

cory_blankenshi · Answer

After your credentials are adjusted so that you can access the API, I would take a look at either the f5-sdk or iCR APIs. Both have the REST API under the hood, but making requests to the f5 and getting back data is pretty easy.&nbsp;Here's some sample code using the iCR API:&nbsp;!/usr/bin/env python
from iCR import iCR
import json

f5 = iCR.iCR('my.f5.com', 'userID', 'password')
result = f5.get('your/endpoint')
print json.dumps(result, indent=4, sort_keys=True)   pretty print the json output

mel_339767 · Answer

@Tom, I've downloaded the package already (iCR). Just waiting for my credentials to be adjusted. BTW, is this compatible with 11.5.4 and 12.1.2? Currently, I'm dealing with two versions.&nbsp;

Forum Discussion

SSO Login Update Coming to DevCentral

Kevin - June 2026 Featured F5er

Tyler - May 2026 Featured Member

Recent Discussions

ASM attack signatures not syncing between active and standby F5

Hardware BIG-IP appliance reach EOSS, but the software version running on it not yet?

VPN Communication Error with F5 BIG-IP Edge Client

simultaneous disabling / enabling of all LTM objects

Query on source IP preservation for syslog traffic through F5 virtual server

Related Content

Create a DevCentral account

F5 BIG-IP Zero Trust Access

Can you access bash with a admin account in F5OS shell?

What’s New in Zero Trust Access v10?

ForgeRock with F5 Distributed Cloud (XC) Account Protection and Authentication Intelligence

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS