VuongLe76_31178
May 09, 2017Nimbostratus
Limited rights for user API
How I can limited rights with user that use for API ? I want user API can only access: / --> GET /* --> GET,PATCH //* --> GET, PATCH, DELETE. When I create new user via tmsh or GUI --> minimun rights is Guest (must add role: Admin, Guest, Firewall Manager,...) --> user can view config on GUI (I dont want it). Can I create user only access to /mgmt/*, not access to /tmui/ ? I have created new iREST_Policy but I dont know how to remote user out user-group Guest. Can I create new role that dont in any user-group ?
Thanks in advance !