Azure API Management
An Azure service that provides a hybrid, multi-cloud management platform for APIs.
1,790 questions
This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
Hi,
We're enabling a specific API consumer to rotate their own API subscription key via APIM REST API permissions.
We require permissions for:
https://learn.microsoft.com/en-us/rest/api/apimanagement/subscription/list-secrets
https://learn.microsoft.com/en-us/rest/api/apimanagement/subscription/regenerate-primary-key
App Registration and service principal are adopted and it works.
Currently using the Contributor Role, but we think it grants broader privileges than necessary.
Can you advise a proper Role in our use case ?
Thank you
@Amy Z Here are list of minimum permissions required for listing and rotating Subscription API Key.
For more information, please refer this document.