Security

All API requests require basic authentication by using the same username and password that is used in the IBM Cloud Object Storage Manager™. Each request requires that the user has the appropriate role.

Table 1. User Interface Roles
Role Permitted Actions in Manager

Super User

Any except vault read/write

System Administrator

Any except security and account management and vault read/write. This role has two ACVL options if no ACL modifier is specified read/write access is assumed. If ACL modifier readOnly is provided, then read-only access is available.

Security Officer

Security and account management. This role has two ACVL options if no ACL modifier is specified read/write access is assumed. If ACL modifier readOnly is provided, then read-only access is available.

Operator

Monitoring only

Vault Provisioner

Create/delete vaults. This role alone does not grant access to the Manager UI.