# Create a security profile

Endpoint: POST /securityprofiles
Version: 1.0.445.36017
Security: OAuth2

## Request fields (application/json):

  - `Name` (string, required)

  - `ID` (string)

  - `Roles` (array)
    Enum: "ApiClientAdmin", "ApiClientReader", "AddressAdmin", "AddressReader", "AdminAddressAdmin", "AdminAddressReader", "AdminUserAdmin", "AdminUserGroupAdmin", "AdminUserGroupReader", "AdminUserReader", "ApprovalRuleAdmin", "ApprovalRuleReader", "BundleAdmin", "BundleAssignmentAdmin", "BundleReader", "BuyerAdmin", "BuyerImpersonation", "BuyerReader", "BuyerUserAdmin", "BuyerUserReader", "CatalogAdmin", "CatalogReader", "CategoryAdmin", "CategoryReader", "CostCenterAdmin", "CostCenterReader", "CreditCardAdmin", "CreditCardReader", "EntitySyncConfigAdmin", "FullAccess", "IncrementorAdmin", "IncrementorReader", "LocaleReader", "LocaleAdmin", "MeAddressAdmin", "MeAdmin", "MeCreditCardAdmin", "MessageConfigAssignmentAdmin", "MeSubscriptionAdmin", "MeXpAdmin", "OrderAdmin", "OrderReader", "OverrideShipping", "OverrideTax", "OverrideUnitPrice", "PasswordReset", "PriceScheduleAdmin", "PriceScheduleReader", "ProductAdmin", "ProductAssignmentAdmin", "ProductCollectionReader", "ProductFacetAdmin", "ProductFacetReader", "ProductReader", "ProductSyncConfigAdmin", "PromotionAdmin", "PromotionReader", "SecurityProfileAdmin", "SecurityProfileReader", "SetSecurityProfile", "ShipmentAdmin", "ShipmentReader", "Shopper", "SpendingAccountAdmin", "SpendingAccountReader", "SubscriptionAdmin", "SubscriptionReader", "SupplierAddressAdmin", "SupplierAddressReader", "SupplierAdmin", "SupplierReader", "SupplierUserAdmin", "SupplierUserGroupAdmin", "SupplierUserGroupReader", "SupplierUserReader", "UnsubmittedOrderReader", "UserGroupAdmin", "UserGroupReader", "OpenIDConnectReader", "OpenIDConnectAdmin", "MessageSenderReader", "MessageSenderAdmin", "XpIndexAdmin", "WebhookReader", "WebhookAdmin", "IntegrationEventReader", "IntegrationEventAdmin", "TrackingEventReader", "TrackingEventAdmin", "DeliveryConfigAdmin", "OrderSyncConfigAdmin", "ErrorConfigAdmin"

  - `CustomRoles` (array)
    Example: [""]

  - `PasswordConfig` (object)
    Example: {"LimitPasswordReuse":0,"MaxConsecutiveDupeChars":0,"MaximumPasswordAge":0,"MinimumPasswordAge":0,"AllowedFailedAttempts":0,"LockoutDuration":0,"UpperCaseRequired":false,"LowerCaseRequired":false,"SpecialCharacterRequired":false,"NumericRequired":false,"MinimumCharacterCount":0}

  - `PasswordConfig.LimitPasswordReuse` (integer)
    The number of passwords, including the current password, that are blocked from reuse. For example, if set to 1, any password except the current one can be reused.

  - `PasswordConfig.MaxConsecutiveDupeChars` (integer)
    The maximum number of consecutive repeating characters in a password.

  - `PasswordConfig.MaximumPasswordAge` (integer)
    The password expires after MaximumPasswordAge in days.

  - `PasswordConfig.MinimumPasswordAge` (integer)
    The password may not be changed again until this number of minutes has passed.

  - `PasswordConfig.AllowedFailedAttempts` (integer)
    The number of failed attempts before the account is locked for the LockoutDuration.

  - `PasswordConfig.LockoutDuration` (integer)
    The number of minutes an account is locked when the AllowedFailedAttempts is reached. Use 0 to indicate that lockout should be indefinite, requiring the manual intervention by an admin user.

  - `PasswordConfig.UpperCaseRequired` (boolean)
    At least one upper case character is required.

  - `PasswordConfig.LowerCaseRequired` (boolean)
    At least one lower case character is required.

  - `PasswordConfig.SpecialCharacterRequired` (boolean)
    At least one special character is required.

  - `PasswordConfig.NumericRequired` (boolean)
    At least one number is required.

  - `PasswordConfig.MinimumCharacterCount` (integer)
    The minimum length of a password.

## Response 201 fields (application/json):

  - `ID` (string)

  - `Name` (string)

  - `Roles` (array)
    Enum: "ApiClientAdmin", "ApiClientReader", "AddressAdmin", "AddressReader", "AdminAddressAdmin", "AdminAddressReader", "AdminUserAdmin", "AdminUserGroupAdmin", "AdminUserGroupReader", "AdminUserReader", "ApprovalRuleAdmin", "ApprovalRuleReader", "BundleAdmin", "BundleAssignmentAdmin", "BundleReader", "BuyerAdmin", "BuyerImpersonation", "BuyerReader", "BuyerUserAdmin", "BuyerUserReader", "CatalogAdmin", "CatalogReader", "CategoryAdmin", "CategoryReader", "CostCenterAdmin", "CostCenterReader", "CreditCardAdmin", "CreditCardReader", "EntitySyncConfigAdmin", "FullAccess", "IncrementorAdmin", "IncrementorReader", "LocaleReader", "LocaleAdmin", "MeAddressAdmin", "MeAdmin", "MeCreditCardAdmin", "MessageConfigAssignmentAdmin", "MeSubscriptionAdmin", "MeXpAdmin", "OrderAdmin", "OrderReader", "OverrideShipping", "OverrideTax", "OverrideUnitPrice", "PasswordReset", "PriceScheduleAdmin", "PriceScheduleReader", "ProductAdmin", "ProductAssignmentAdmin", "ProductCollectionReader", "ProductFacetAdmin", "ProductFacetReader", "ProductReader", "ProductSyncConfigAdmin", "PromotionAdmin", "PromotionReader", "SecurityProfileAdmin", "SecurityProfileReader", "SetSecurityProfile", "ShipmentAdmin", "ShipmentReader", "Shopper", "SpendingAccountAdmin", "SpendingAccountReader", "SubscriptionAdmin", "SubscriptionReader", "SupplierAddressAdmin", "SupplierAddressReader", "SupplierAdmin", "SupplierReader", "SupplierUserAdmin", "SupplierUserGroupAdmin", "SupplierUserGroupReader", "SupplierUserReader", "UnsubmittedOrderReader", "UserGroupAdmin", "UserGroupReader", "OpenIDConnectReader", "OpenIDConnectAdmin", "MessageSenderReader", "MessageSenderAdmin", "XpIndexAdmin", "WebhookReader", "WebhookAdmin", "IntegrationEventReader", "IntegrationEventAdmin", "TrackingEventReader", "TrackingEventAdmin", "DeliveryConfigAdmin", "OrderSyncConfigAdmin", "ErrorConfigAdmin"

  - `CustomRoles` (array)
    Example: [""]

  - `PasswordConfig` (object)
    Example: {"LimitPasswordReuse":0,"MaxConsecutiveDupeChars":0,"MaximumPasswordAge":0,"MinimumPasswordAge":0,"AllowedFailedAttempts":0,"LockoutDuration":0,"UpperCaseRequired":false,"LowerCaseRequired":false,"SpecialCharacterRequired":false,"NumericRequired":false,"MinimumCharacterCount":0}

  - `PasswordConfig.LimitPasswordReuse` (integer)
    The number of passwords, including the current password, that are blocked from reuse. For example, if set to 1, any password except the current one can be reused.

  - `PasswordConfig.MaxConsecutiveDupeChars` (integer)
    The maximum number of consecutive repeating characters in a password.

  - `PasswordConfig.MaximumPasswordAge` (integer)
    The password expires after MaximumPasswordAge in days.

  - `PasswordConfig.MinimumPasswordAge` (integer)
    The password may not be changed again until this number of minutes has passed.

  - `PasswordConfig.AllowedFailedAttempts` (integer)
    The number of failed attempts before the account is locked for the LockoutDuration.

  - `PasswordConfig.LockoutDuration` (integer)
    The number of minutes an account is locked when the AllowedFailedAttempts is reached. Use 0 to indicate that lockout should be indefinite, requiring the manual intervention by an admin user.

  - `PasswordConfig.UpperCaseRequired` (boolean)
    At least one upper case character is required.

  - `PasswordConfig.LowerCaseRequired` (boolean)
    At least one lower case character is required.

  - `PasswordConfig.SpecialCharacterRequired` (boolean)
    At least one special character is required.

  - `PasswordConfig.NumericRequired` (boolean)
    At least one number is required.

  - `PasswordConfig.MinimumCharacterCount` (integer)
    The minimum length of a password.

## Response 4XX fields (application/json):

  - `StatusCode` (integer)
    Example: "404"

  - `ErrorCode` (string)
    Example: "NotFoundError"

  - `Message` (string)
    Example: "Object not found"

  - `Data` (object)
    Example: {"ObjectType":"","ObjectID":""}