Service users - Precisely Data Integrity Suite

Data Integrity Suite
Product
Spatial_Analytics
Data_Integration
Data_Enrichment
Data_Governance
Precisely_Data_Integrity_Suite
geo_addressing_1
Data_Observability
Data_Quality
dis_core_foundation
Services
Spatial Analytics
Data Integration
Data Enrichment
Data Governance
Geo Addressing
Data Observability
Data Quality
Core Foundation
ft:title
Data Integrity Suite
ft:locale
en-US
PublicationType
pt_product_guide
copyrightfirst
2000
copyrightlast
2026

Service users provide a secure alternative to using personal credentials for API access. This approach addresses security and audit concerns by enabling least-privilege permissions and better access control.

Limited Availability: This feature is currently available only in select workspaces and might be subject to change before general availability.
Key benefits of service users
  • Eliminates security risks from shared personal credentials
  • Provides audit trail for API access
  • Enables granular permission control through user groups
  • Supports least-privilege access principles

Create service users

Service users are created through the security tab in the Data Integrity Suite.
  1. Click Configuration > Security tab.
  2. Select the Users tab.
  3. Click Create Service User.
  4. Enter a service username (for example, "finance team").
  5. Optionally add a description.
  6. Optionally assign user groups to define permissions.
    Note: Service users cannot be assigned to the workspace owner group.
  7. Click Create to save the user or Create another to create additional users.
Tip: User groups are associated with roles, and roles are associated with permissions. Use user groups to implement least-privilege access.

Edit service users

Service users control which APIs and resources the account can access. All API keys for the service account inherit these permissions. When you change permissions, the changes apply immediately to all keys.

To edit the service users:
  1. Click Configuration > Security.
  2. Select the Users tab.
  3. Click the ellipsis next to the service user for which you want to edit the details and click edit.
  4. You can edit the user details, assigned user groups, roles and security policies as required. Additionally, you may choose to regenerate or delete the existing API key. Regenerating the API key will retain the key's ID , and will only regenerate the API Secret.
    Note: Copy the secret immediately and store it securely. The secret is displayed only once and cannot be retrieved later.
  5. Once modified, click Save to apply the details to the service user.

Managing API keys for service users

Managed service accounts enable organizations to create service users with granular, API-level permissions for secure integrations and third-party access without using personal API keys.

Note: You must have the Manage user and Manage workspace permission to create and manage API keys. You must have an existing service account to which you can bind the API key.

Each service account can have up to two API keys. You can use multiple keys to support key rotation without disrupting integrations. Keys inherit all permissions from their associated service account.

To generate API keys for the service users

  1. Click Configuration > Security.

  2. Within the Users tab, select the service user for which you want to generate the API key.

  3. Within the details tab, navigate to the API key section and click Generate API Key.

  4. Enter a name for the API key.

  5. Click Generate.

Note: Data Integrity Suite displays a list of existing API keys for the service account, including their name, API Key and the generated date. The system also generates the secret. Copy the secret immediately and store it securely. The secret appears only once and you cannot retrieve it later.

The API key is now created and active. You can use it for integration and authentication. The key inherits all permissions from the service account.