Authentication and security for APIs and requests

APIs use credential-based authentication. You must have a valid user ID and password to access APIs.

To control access to APIs, Administrators create accounts that have a user name, a role, and an associated password.

The role defines the level of access granted to users under that account. BMC Real End User Experience Monitoring offers the following predefined roles:

  • Security — Provides access to sensitive configurations, such as private key management, enabling and disabling the traffic capture, and configuring data confidentiality policies.
  • Administrator — Provides access to all functions of the system that are not related to security. This role exists primarily for account management purposes.
  • Operator — Provides access to all features that the Administrator role has except for account management. This role exists for device and data management purposes.
  • Observer — Provides access to the web interface, but users with this role cannot make any configuration changes other than to save or edit report settings and saved query settings. The permissions of this role are sufficient to perform day-to-day tasks.
  • Export — Provides no access to the web interface and is limited to downloading data via data export APIs.
  • Consumer — Provides access to only the Web Performance Dashlet.
The following table shows access levels for each role.

Roles and permissions matrix

 

Permission →

Role ↓

Security
settings
access

Accounts
access

Overall
configuration
access

Web
interface
access

Data
download

Security

Administrator

 

Operator

 

 

Observer

 

 

 

Export

 

 

 

 

Related topics

User-accounts-and-roles

Enabling-the-API-functionality

 

Tip: For faster searching, add an asterisk to the end of your partial query. Example: cert*