Feedback

To create an API key for UniFi Protect integration (or, indeed, UniFi Network), a super admin or owner credential is required. If, as is documented, expected, and best practice, a user account with least privileged access required to fulfill the role is create as a local user account, that account doesn't need to be a super admin on the console to work. As such, that account wouldn't be able to create an API key. To fulfill the minimum requirements of the integration setup screen, an API key is required. The documentation suggests creating an API from any standard admin account, which is incorrect and also very bad practice as API keys are unique to user accounts. The documentation is unclear on this point or that using an API key from a different user effectively grants your least privileged access user full system control.

URL

https://www.home-assistant.io/integrations/unifiprotect/

Version

2025.8.0

Additional information

No response