topic Re: Read only access to API in Network Platform API

Read only access to API

flyingframes — Thu, 17 Oct 2024 21:23:11 GMT

Is there such a thing as providing read only access to APIs?

I guess if an API key can be set to read only, then it should be able to perform only GET operations. Is this possible with Meraki?

We are trying to give an app access to perform only GET operations!

Re: Read only access to API

Raphael_L — Thu, 17 Oct 2024 22:30:19 GMT

Give the user account read-only privileges. Will it restrict the user from being able to use POST ? Not sure

Re: Read only access to API

flyingframes — Thu, 17 Oct 2024 22:58:55 GMT

Thanks. Just tried, this trick worked. Created a read only user and the API key created from it is only doing read only operations.

Re: Read only access to API

sungod — Fri, 18 Oct 2024 09:14:51 GMT

Do bear in mind that 'read-only' access is not totally read-only - a read-only account still allows port-cycling and cable-test operations to be performed on switch ports.

For instance, cycling a port will result in downstream devices will losing connectivity and PoE.

We had a customer find this out the hard way.

I.e. you still need to be careful about granting read-only permission and caution users about these operations.

Re: Read only access to API

csanchezbarbudo — Wed, 05 Nov 2025 14:41:18 GMT

Hellos. Not sure about how to proceed. If I create a read-only admin, Can he create an API Key?
And if API Key was created by a full admin, even if a Log as a read-only admin on dashboard, API key is same one, right?

How did you proceed?

Thanks in advance.

Re: Read only access to API

obrigg — Wed, 05 Nov 2025 14:44:38 GMT

Any user can generate an API key. The API key represents the user and their permissions - read-only user will have read-only privileges, read-write user will have read-write privileges, etc’.

Re: Read only access to API

Raphael_L — Wed, 05 Nov 2025 14:45:19 GMT

If I create a read-only admin, Can he create an API Key? Yes.

And if API Key was created by a full admin, even if a Log as a read-only admin on dashboard, API key is same one, right? No , API key are created per user , but it can be shared ( but please don't do that )

Re: Read only access to API

obrigg — Wed, 05 Nov 2025 14:59:02 GMT

Also, as soon as the user permission changes (read to write, write to read, network admin to org admin, etc’) - their API key’s privileges will reflect the change too.