I am having difficulty configuring our ZenDesk system to permit End Users (users in partner Organizations) to authenticate and make API calls to list and create tickets associated with their organization.
Using Postman and Basic Auth, I can make a successful GET request to /api/v2/organizations/:org_id/tickets with my admin account, "/token" suffix, and associated API token.
Using the exact same request, but with an account assigned to the partner organization (and associated suffix and API token) corresponding to the :org_id, the request fails with status 403 Forbidden.
Therefore, I am assuming this must be some basic permission-based issue, but I cannot find any appropriate setting to allow the End User to successfully authenticate and complete the request.
Note, both accounts (successful and failing) have unique verified primary email addresses.
Can anyone provide information or tips that might help me resolve this?
