Technical Tip: How to create API key access to an IAM user

To provide API key access to an IAM user, first, the user should have an IAM user account with a permission profile.

In this example permission profile will allow read-only access to all the modules and read-write access to the General module. 

Step 1: Navigate to Support and select Services -> IAM.

Step 2: Create a Permission profile with 'Read & Write' access to the 'General' resource and the rest of the resources set with 'Read Only' privileges as below:

Step 3: Create an IAM user under Users as below:

Select the permission profile that was created in step2 whiling creating IAM users. Once the IAM user is created, the user can log in with the IAM account username/password, navigate to the General tab, and create an API key for their account as below:

Note:
There will be no separate 'Permission Profile' needed to be created for API keys; the IAM account permission profile of the user will be associated with the API key. Each IAM user has to log in with their individual account to generate the API key. 

This API user can have 'Read & Write' access to another module of the General resource.

If the user has to restrict another module of the General resource once the API key is generated by the IAM, the user changes the permission profile to read-only for the General resource.