I have one API only role, associated with a user, but it's used for multiple Launchpoint integrations. Is this best practice? I am new to the Marketo Instance I am auditing and there seems to be problems with these services pushing information into Marketo. I am trying to uncover the reason for issues, could this be why?
One API-only role, or one API-only user?
It's definitely not good practice to have only one API-only user, by any means. You must be able to invalidate a login without invalidating all of them.
Having just one role is fine, if they all need to have the same permissions you don't need to needlessly copy the role.