Required Scopes and Endpoint Domains for LinkedIn Marketing Solutions

When integrating with LinkedIn Marketing Solutions, your application needs specific permissions to interact with the API.

These permissions are defined by access scopes, which determine what data your application can access and what actions it can perform.

This topic provides information about the required access scopes and endpoint domains for the LinkedIn Marketing Solutions server.

Understanding Scopes

Scopes are a way to limit an application's access to a user's data. They define the specific actions that an application can perform on behalf of the user.

For example, a read-only scope might allow an application to view data, while a full access scope might allow it to modify data.

Required Scopes for LinkedIn Marketing Solutions

Scope	Description
r_ads	Read-only access to ad accounts. Required for the following entities: Accounts AudienceCount BudgetPricing CampaignGroups CampaignRecommendations Campaigns Conversions Creatives Forms JobFunctions ThirdPartyTracking ConversationCreatives ConversationCreativeActions
rw_ads	Read and write access to ad accounts. Required for the following entities: Accounts AudienceCount BudgetPricing CampaignGroups CampaignRecommendations Campaigns Conversions Creatives Forms JobFunctions ThirdPartyTracking AccountUsers PublisherRestrictionFiles MessageCreatives BrandLiftTests
r_ads_reporting	Read access to ad reporting and analytics data. Required for the following entities: Analytics
r_marketing_leadgen_automation	Access to lead generation forms and marketing automation data. Required for the following entities: AdFormResponses
w_organization_social	Read and write access to organizational social media content. Required for the following entities: Posts SocialActions Videos Images Documents UploadVideo UploadImage UploadDocument DownloadAsset
r_organization_social	Read-only access to organizational social media content. Required for the following entities: Posts SocialActions
w_member_social	Write access to member social media content. Required for the following entities: Posts SocialActions
r_member_social	Provides read access to member social media content. Required for the following entities: Posts SocialActions
r_compliance	Required to retrieve activities for compliance monitoring and archiving. Required for the following entities: Industries SocialActions
w_compliance	Manage and delete data on behalf of an authenticated member for compliance requirements. This is a private permission and access is granted to select developers. Required for the following entities: Industries SocialActions
r_organization_admin	Read-only access to organization data. Required for the following entities: OrganizationRoleAssignments

Understanding Endpoint Domains

Endpoint domains are the specific URLs that the application needs to communicate with in order to authenticate, retrieve records, and perform other essential operations.

Allowlisting these domains ensures that the network traffic between your application and the API is not blocked by firewalls or security settings.

Note: Most users do not need to make any special configurations. Allowlisting is typically only necessary for environments with strict security measures, such as restricted outbound network traffic.

Required Endpoint Domains for LinkedIn Marketing Solutions

Domain	Always Required	Description
accounts.linkedin.com	TRUE	The subdomain used for OAuth.
api.linkedin.com	TRUE	The subdomain used for accessing various services.