> ## Documentation Index
> Fetch the complete documentation index at: https://bloodhound.specterops.io/llms.txt
> Use this file to discover all available pages before exploring further.

# jamf_Update_API_Client_and_Create_Roles

> Represents combined possession of 'Update API Integrations' and 'Create API Roles' permissions and at least one API client exists in the tenant allowing updates of existing API clients and assigning new roles created with any included permissions. Non-traversable because these permissions alone cannot retrieve API client credentials.

<img noZoom src="https://mintcdn.com/specterops/tTIczgde9H07oLXf/assets/enterprise-AND-community-edition-pill-tag.svg?fit=max&auto=format&n=tTIczgde9H07oLXf&q=85&s=ad49a576589f4d2a8081df77d07fdf56" alt="Applies to BloodHound Enterprise and CE" width="482" height="45" data-path="assets/enterprise-AND-community-edition-pill-tag.svg" />

## Edge Schema

* Source: [jamf\_Account](/opengraph/extensions/jamf/nodes/jamf_account), [jamf\_DisabledAccount](/opengraph/extensions/jamf/nodes/jamf_disabledaccount), [jamf\_Group](/opengraph/extensions/jamf/nodes/jamf_group)
* Destination: [jamf\_Tenant](/opengraph/extensions/jamf/nodes/jamf_tenant)
* Traversable: ❌

## General Information

The non-traversable jamf\_Update\_API\_Client\_and\_Create\_Roles edge represents a combined permission where the source can update existing API clients and create new API roles. This is non-traversable because Jamf accounts and groups cannot retrieve API client credentials without the 'Create API Integration' permission.

```mermaid theme={null}
graph LR
    A("jamf_Account
role.designer")
    B("jamf_Tenant
CorpJamfPro")
    C("jamf_Group
Platform-Admins")
    D("jamf_ApiClient
Workflow API Client")
    A -- jamf_Update_API_Client_and_Create_Roles --> B
    C -- jamf_Update_API_Client_and_Create_Roles --> B
    D -- jamf_Update_API_Client_and_Create_Roles --> B
```