I have a Dynatrace user who needs access to WriteConfig API for particular management zones. She would like to add subscribers for reports via API.
It seems like Default API WriteConfig access cannot be limited.
Any ideas how I can achieve limiting user access to WriteConfig API?
Solved! Go to Solution.
If a user only has access to particular management zones within an environment, and they create an API token with WriteConfig, then it should only have access to edit configurations within those management zones that they have access to in the UI. However, if a user has environment-wide permissions and they create an API token with WriteConfig, then I do not believe there is a way to limit that API token scope to particular management zones. Each API token can only read/edit based on the user's permissions who created the token. Hope this helps.