Access REST API without admin role

I would like to know if it is possible to access the API without the “admin” role.
I need to allow a monitoring software access to the API, but I don’t want to grant it the admin role.

OS Information:
ubuntu 20.04.6
Package Version:
graylog 4.3.14 (free edition)
mongodb 4.4.20
opensearch 1.3.4

I already try to use a user with “reader” role to access
https://masked:9000/api/sidecars
but I got

adding the role " [Sidecar System (Internal)" doesn’t change anything

Does anyone know if and how this is possible?
Thank for any help.

Helpful Posting Tips: Tips for Posting Questions that Get Answers [Hold down CTRL and link on link to open tips documents in a separate tab]

If a user is not an admin then they will have to be given individual access to most items you want them to access. The reader role mostly just gives you access to login. You then need to use “share” to give access to any streams you want to give access to to read the messages, or dashboards etc. You will also want to explore all the roles (you can also create custom roles in via api) and assign what you need for individual read access to features like sidecar.

You can test all of this by actually logging in to Graylog with the web UI using the account you created, as the web UI uses the exact api calls that you are using externally.

Thank you very much, I’ll give it a try.
Fabio

This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.