REST API knowledge exchange
Post Reply
DE&C
Service Provider
Posts: 47
Liked: 37 times
Joined: Aug 07, 2017 11:51 am
Full Name: William
Location: Zurich, Switzerland
Contact:
Contact DE&C

Feature Request: Allow all REST API endpoints with GET for Backup Viewer

Post by DE&C » 1 person likes this post

Feature Request
  • Allow all REST API endpoints with GET (data retrieval only) to be accessible "Read Only User"
->(Backup Viewer role).

Reasoning:
  • Ensures that monitoring and reporting tools can fetch necessary information without requiring elevated permissions.

    Increases security by limiting access to non-destructive operations.

    Simplifies integration for read-only use cases.
Example
  • /api/v1/license
Top
Mildur
Product Manager
Posts: 11276
Liked: 3126 times
Joined: May 13, 2017 4:51 pm
Full Name: Fabian K.
Location: Switzerland
Contact:
Contact Mildur

Re: Feature Request: Allow all REST API endpoints with GET for Backup Viewer

Post by Mildur »

Hi Doron,

The request for a "Read Only" API viewer makes sense.
However, I'm not sure if this should be part of the "Backup Viewer" role, as the Backup Viewer is intended to only see backups.

It might be possible to add such a role when our new v13 feature "Custom Role (RBAC)" adds support for REST API.
I'll discuss this request further with our REST API team.

As a workaround, you may check out RestAPI of Service Provider Console. VSPC already allows Read Only API access.

Best,
Fabian
Product Management Analyst @ Veeam Software
Top
aeckstein
Lurker
Posts: 1
Liked: never
Joined: Jan 13, 2026 9:47 am
Full Name: Andre Eckstein
Contact:
Contact aeckstein

[Merged]VBR REST API Permissions for Monitoring Solutions

Post by aeckstein »

Hi all,

i´m currently developing a REST API based Monitoring Plugin for the monitoring solution checkmk ( https://checkmk.com ) for Veeam Backup and Replication 13.

What I realized is that the current available VBR user roles don´t really fit the use case of monitoring.
It seems that some of the most basic informations, e.g. license status, is only available to the Administrator role.
I really would like to avoid using Administrator Accounts to access the REST api to not compromise the security of the backup server with the monitoring access.
Are there any plans for more configurable api permissions (rbac) or a monitoring role, which has read-only access to all rest api endpoints ?

Any Tips regarding security that i´m missing and how are other monitoring solutions addressing this issue ?

kind regards
Andre
Top
david.domask
Veeam Software
Posts: 3215
Liked: 749 times
Joined: Jun 28, 2016 12:12 pm
Contact:
Contact david.domask

Re: Feature Request: Allow all REST API endpoints with GET for Backup Viewer

Post by david.domask » 1 person likes this post

Hi Andre, welcome to the forums.

I've moved your post to an existing topic on the same subject -- understood on the request, and we intend to extend role based access control (RBAC) to the automation endpoints including REST API, but no ETA at the moment.
David Domask | Product Management: Principal Analyst
Top
Post Reply

Return to “REST API”



Who is online

Users browsing this forum: No registered users and 5 guests