The security level of your API calls are directly related to the security level of the SolarWinds account you are using to make those calls. When you authenticate against the API you are simply sending a username/password of a user account in the SolarWinds web console. Whether that is an Orion Individual Account, or an AD account with permissions in the Orion web console. So, to create a "Read Only API Account" you just need to go into the Orion Web Console, go to Settings > Manage Accounts, and then just setup the permissions you do/don't want it to have. You would just make sure not to give it Admin rights and make sure not to give it Manage Nodes/Reports/Alerts rights. That's it.
↧