iControl REST Fine-Grained Role Based Access Control

Introduction F5's role based access control (RBAC) mechanism allows a BIG-IP administrator to assign appropriate access privileges to the users (see Manual Chapter: User Roles). For example, with ...
Updated Jun 06, 2023
Version 2.0
BIG-IP
devops
iControlREST
Super-NetOps
Olivier_Gleizes's avatar
Olivier_Gleizes
Icon for Nimbostratus rankNimbostratus
Nov 19, 2018

Hi ! As I understand this article, I can't give to a api user the permissions to POST or PATCH without give him the admin permissions. I try to give the rights to a user with the operator rôle to modify with iControl the gtm configuration (and only this part).

 

Indeed, the api user can bypass the fine grained permission of icontrol with the Configuration Utility and perform the actions manualy.