In Access Manager, under Service and roles, for Access Manager API role, there is only one choice, which is Administrator
It would be great if an additional choice such as "Read-only"
Why this is needed.
For Tridion Support Team, our Cloud Op Team's security best practice does not allow non-Cloud team member to have access to Access Manager.
For troubleshooting a Tridion security issue now adays, these permission issue is very much related to Access Manager so not having at least read-only permission would delay the investigation as every time, some info is needed., it takes a while to get that info from the Cloud Op Team. It would be great if at least, the Support Team can see what / how the various information in Access Manager is configured so that would speed up the finding of the cause of the issue.