Managing API access tokens

Certain third-party applications may need to send requests to the SDMC API in order to retrieve activity logs or the list of users, for example.

To allow these requests, you need to provide these third-party applications with API access tokens. The administrator must have the Managing tokens permission. For more information, refer to the section Managing administrators.

WARNING
An access token grants administration privileges directly on the SDMC server. To prevent security vulnerabilities, ensure that the workstations from which requests are sent through the SDMC API are safe and located within a restricted administration perimeter, such as a dedicated administration network.

To see examples on how to use the API with tokens, refer to https://github.com/stormshield/sds-sample-api.

For more general information about the SDMC API, refer to the API documentation.