Each endpoint can be protected by one or more access scopes. The fixed set of scopes is assigned to the API key at its creation time. Assigned set of scopes determine which endpoints can be accessed using that key.
To make sure your API key can access all the endpoints you need, identify the required scopes for the endpoints and enable them when creating the key. Required scope(s) for each endpoint can be seen in the API Reference.