Skip to main content
Docs
Feature Requests Onboarding Trust Center Status Page

Community

Connector Improvement: Support Fine-Grained Permissions for Zendesk Admin API Access

Answered
Arpit Rana User

We’d like to request an improvement to the Zendesk Support connector that allows it to function with more granular API permissions — rather than requiring full admin-level access.

Currently, the connector setup per Fivetran documentation requires a Zendesk user with Administrator privileges. This is a blocker in organizations where admin access is tightly controlled due to data sensitivity and compliance policies.

Our request:

  • Enable the connector to work with a custom role or scoped API token that has only the minimum required permissions.

  • Provide a clear list of Zendesk roles/permissions or scopes needed for:

    • Reading ticket data (including audit logs and satisfaction ratings)

    • Accessing user and org metadata

    • Fetching ticket field history and custom forms

  • Ideally support OAuth or API token authentication with least-privilege principles.

Why this matters:

  • Improves security posture by reducing the need to grant full admin rights to service accounts

  • Makes it easier for enterprise teams with strict governance requirements to adopt the Zendesk connector

  • Enables Helpdesk or Support teams to maintain tighter control over data access while still enabling integration

Let us know if there’s any current workaround or planned roadmap item addressing this.

Thanks!

Please sign in to leave a comment.

Comments

1 comment

Date Votes
  • Official comment
    Vignesh Rengaraj Fivetranner

    Hi Arpit,

    Thank you for raising this request and for outlining the security considerations so clearly.

    At present, certain Zendesk APIs and webhooks that the connector depends on require an admin account. This is why OAuth authorization must be done by an admin user today. We understand that this can be a challenge in environments where admin rights are tightly controlled.

    We’re open to exploring support for more granular, scoped-down permissions in the future, and we’ll prioritize this work based on customer demand.

    In the meantime, a common workaround we recommend is creating a dedicated Zendesk service account with admin rights. This way, the connector has the access it needs to fetch all required tables, without extending admin privileges to individual users.

    Best,
    Vignesh 
    Fivetran Product team