Creating an Access Token
Follow the steps below to create an access token.
To create an access token
| 1. | Click Accounts & Users > Manage Access Tokens. The Manage Access Tokens page opens. |
| 2. | On the Manage Access Tokens page, click Create. The Create Token page opens. All fields are empty. |
| 3. | Provide the following information: |
|
Option |
Description |
|
Token Creator |
By default, this field is prepopulated with the name of the currently logged-in user. |
|
Create for someone else |
Select this checkbox if you want to create an IMPERSONATED token (that is, a token that can be used by a privileged user to act as another user temporarily). Selecting this checkbox will show the Created For field. Note:This checkbox is displayed only for users with the Create Impersonated Token permission. |
|
Created For |
This field is available only if you selected the Create for someone else checkbox. Specify the name of the user for whom the token is generated (that is, the user who will be impersonated when the token is used). Note:This field is displayed only for users with the Create Impersonated Token permission. |
|
Token Name |
Specify a token name. The name must be 5 - 25 characters long. The following characters are not supported: * < > + $ ? . ^ | % ] \\\\ (four consecutive back slashes are not allowed) HTML tags that may indicate an XSS attack will be rejected. |
|
Description |
Enter a description of the token. For IMPERSONATED tokens, this should capture the impersonation reason. |
|
Expiration Time |
Specify when the token should expire. The minimum lifetime is 1 minute. Use the following format to specify the expiration time: Y=years, M=months, d=days, h=hours, m=minutes (case sensitive). Example: 3Y 4M 3d 9h 6m Best practice: Use a short duration and rotate tokens once every month or three months. See also .
|
| 4. | Click Save. The Create Token page is displayed, which shows information for the token that you just created. |
| 5. | The Token Value field shows the access token, which is a hexadecimal string with an rna_ prefix. Click Copy to copy and paste the value to a secure location of your choice. |
Note:When accessing a FlexNet Operations SOAP or REST API, the token value must be added to the authentication header of the API request, preceded by the word Bearer.
| 6. | Click Back to Manage Tokens to return to the Manage Access Tokens page. |
See also