A role is a collection of privileges that you can assign to users. To ensure that every user can access assets and perform tasks in an organization, assign at least one role to each user.
API Center uses pre-defined roles to define access privileges for different types of assets and service features. For example, users with the Designer role can create assets, but don't have access to the API Console page and to policies.
You can assign the following types of roles to API Center users in Administrator:
API Center Role
Role Name Mapping
Access Privileges
API Administrator
Admin
Has full access to the service, including all asset privileges, and can provision tenants.
Can access the following pages:
- New Asset
- Explore
- Policies
- API Console
- API Monitor
- Configuration
API Deployer
- Deployer
- Service Consumer
Can view and deploy assets, provision tenants, assign policies, manage organization settings, and add OAuth 2.0 clients when assigned with the Service Consumer role.
Can access the following pages:
- Explore (read-only)
- API Console
- Configuration
Deployer can also create a published API from the Services tab in the API Console page.
API Designer
- Designer
- Service Consumer
Has full access to all asset privileges and can assign policies when assigned with the Service Consumer role.
Can access the following pages:
- New Asset
- Explore
API Monitor
Monitor
Can monitor assets and view API invocation logs.
Can access the following pages:
- Explore (read-only)
- API Monitor
API Policy Manager
API Policy Manager
Can define policies and access the following pages:
- Explore (read-only)
- Policies
You can create and configure individual user accounts to allow access to your organization on the Users page in Administrator. You can create groups of users that can perform the same tasks on the User Groups page in Administrator.