Client Credentials allow for Tenant base role restrictions

Regarding the new service accounts to Client Credentials migration as part of the MFA enforcement steps.
Client Credentials allow for Tenant base role restrictions, but this will only be enforce if this parameter "defaultRolesAssignmentEnabled": false, is manually added to the Client Credentials configuration.

Otherwise when getting the token the Client Credentials will have ROLE_API added for all tenants, removing the function of Tenant base role restrictions.

You will need to use the API call:
GET https://auth.reltio.com/oauth/customers/<customerId>/clients/<clientID>
Copy the body, and add the parameter "defaultRolesAssignmentEnabled": false,

Then use:
PUT https://auth.reltio.com/oauth/customers/<customerId>/clients/<clientID>
Use the previous edited body.

This will enforce the Tenant Role Based restrictions on the Client Credentials and will stop adding ROLE_API for all tenants to the Client Credentials Token.

We are suggesting making "defaultRolesAssignmentEnabled": false default when the client credentials are created, but for the moment please use this workaround.