Best Practice | Global API Application Security Validation

Introduction:

To ensure the highest level of data compliance, CMiC applies application-level security across all endpoints. This ensures that API responses respect company, job, project, payroll, and employee relevant security rules, protecting sensitive information from unauthorized access.

Recommendations:

• Verify that your API calls are aligned with your assigned permissions by checking the application security setup for the API service account under CMiC System User Maintenance.

• Report any unexpected access errors to your Account Manager or CMiC Support.