High-Risk Permissions
Last updated - 13 August, 2024
Unless you are using an API endpoint that requires these permissions, we recommend you avoid generating API tokens with them without explicit thought as they provide access which can pose a higher risk if misused:
| Permission Tab (uiv4) | Permission Name | Permission Value |
| Settings | Account Information | Manage |
| Settings | Security | Manage |
| Settings | User Access | Manage |
| Settings | User Profile | Manage |
| Modules | All Installed Modules | Manage |
| Modules | Allow management of Access Groups* | Enabled |
| Resources | All Devices* | Manage |
| Resources | All Devices* | Remote Session |
| Resources | Collectors | Manage |
| Resources | Collectors | Remote Session |
*We recommend scoping your Resource access rather than providing access to All Devices.
