Authentication

The REST API for Oracle Communications Unified Assurance Vision handles authentication using SSL certificates. The SSL certificate for the api user is generated by default.

To set up authentication for other users, generate an SSL certificate using the CreateSSLCertificate application, specifying User for the --type option and the appropriate user name for the --CN option. See CreateSSLCertificate in Unified Assurance Implementation Guide for more information about generating SSL certificates.

Authorization

Unified Assurance users are added to user groups with assigned roles. These roles are assigned permissions, which allow access to specific APIs and their methods. Oracle recommends using the default api user, but you can optionally create additional users, groups, and roles as needed.

For Vision, each endpoint lists the package permissions that grant access to it. If a user does not have access to a particular endpoint, add the user to a group that is assigned a role with the appropriate permissions.

The following roles are already defined:

• The Administrator role has full access to all API endpoints.
• The Operator role has access to most GET endpoints.
• The API role has access to most GET, PUT, PATCH, and POST endpoints, but not all DELETE endpoints.

See the following for more information:

• The AAA endpoints in this guide.
• Authentication Options and Adding User Accounts in Unified Assurance Security Guide.
• Topics under AAA in Unified Assurance User's Guide.