PUT Security Roles ID Permissions Global

The PUT /Security/Roles/{id}/Permissions/Global method is used to update the global permissions granted to the specified security role by ID. Note that the areas Certificates and CertificateStoreManagement are reserved for collection The certificate search function allows you to query the Keyfactor Command database for certificates from any available source based on any criteria of the certificates and save the results as a collection that will be availble in other places in the Management Portal (e.g. expiration alerts and certain reports). and container permissions. This method returns HTTP 200 OK on a success with global permission details for the specified security role.

Important: Any previously defined permissions of the given type (e.g. global) that are not submitted with their full existing data using this method will be cleared of their existing data. Existing data for other types will be retained. When using this method, you should first do a GET to retrieve all the permissions of the given type for the role you want to update, enter corrected data into the field(s) you want to update, and then submit all the fields using PUT, including the fields that contain values but which you are not changing. If you just wish to add permissions without modifying existing permissions, use the POST method.

Note: The API

A set of functions to allow creation of applications. Keyfactor offers the Keyfactor API, which allows third-party software to integrate with the advanced certificate enrollment and management features of Keyfactor Command. Endpoint

An endpoint is a URL that enables the API to gain access to resources on a server. utility displays a list of valid global permissions on the endpoint.

Tip: The following permissions (see Security Roles and Claims) are required to use this feature:

/security/modify/

The user must hold a role containing this permission in the Global Permission Set (see Permission Sets).

Table 620: PUT Security Roles {id}Global Permissions Input Parameters

Name

Description

Path

Required. An integer indicating the Keyfactor Command reference ID of the security role for which to set global permissions.

Use the GET /Security/Roles method (see GET Security Roles) to retrieve a list of all the security roles to determine the role's ID.

globalPermissions

Body

An object containing information about the global permissions granted for this security role.

Note: See the API endpoint header for a list of all the valid Area and Permission combinations.

Show details.

Name	Description
Area	Required. A string indicating the name of the permissions to grant (e.g. AdminPortal).
Permission	Required. A string indicating the permission level to grant (e.g. Read)

Table 621: PUT Security Roles {id} Global Permissions Response Data

Name

Description

An object containing information about the global permissions granted to the security role. Show details.

Name	Description
Area	A string containing the name of the permission (e.g. Certificates).
Permission	A string indicating the permission level granted in the area for this role (e.g. Read).

Tip: See the Keyfactor API Reference and Utility which provides a utility through which the Keyfactor API endpoints can be called and results returned. It is intended to be used primarily for validation, testing and workflow

A workflow is a series of steps necessary to complete a process. In the context of Keyfactor Command, it refers to the workflow builder, which allows you automate event-driven tasks when a certificate is requested or revoked. development. It also serves secondarily as documentation for the API. The link to the Keyfactor API Reference and Utility is in the dropdown from the help icon (

) at the top of the Management Portal page next to the Log Out button.

Version v12.1

On this page: