Use the RBAC API v1 and v2 endpoints to manage users, roles, tokens, password, and LDAP or SAML connections.

Endpoint Use
users Manage local users as well as those from a directory service, get lists of users, and create new local users.
groups Get lists of groups and add a new remote user group. This endpoint has a v1 and v2. The v2/groups endpoint has the option to validate the group against LDAP before creating it.
roles Get lists of user roles and create new roles.
permissions Get information about available objects and the permissions that can be constructed for those objects.
ds (Directory service) Get information about the directory service, test your directory service connection, and replace directory service connection settings.
password Generate password reset tokens and update user passwords.
tokens Generate the authentication tokens used to access PE. The v1/tokens endpoints are for creating tokens, while the v2/tokens endpoints are for revoking them.
rbac-service Check the status of the RBAC service.