Docs » Create and manage authentication tokens using Splunk Observability Cloud » Create and manage user API access tokens using Splunk Observability Cloud

Create and manage user API access tokens using Splunk Observability Cloud 🔗

This topic describes how to create a user API access token that you can use to authenticate API requests.

Some API requests require a user API access token created by an administrator.

To authenticate API requests that send data to Splunk Observability Cloud, you must use an organization access token, not a user API access token.

Create a user API access token (session token) 🔗

To create a user API access token:

  1. Open the navigation Menu.

  2. Select your profile name and click Account Settings.

  3. Click Generate User API Access Token.

  4. Click Show User API Access Token.

  5. Click Copy to copy the token to your clipboard.

  6. If you are going to keep your Account Settings screen open, click Hide to prevent others from seeing your token.

After you generate and copy the user API access token, you can’t see it again in your profile. Instead, generate a new token. You can generate as many as you want.

You don’t need to delete your user API access tokens. Instead, you can let them expire.

User API access token expiration 🔗

A user API access token you create on the Account Settings page expires when you log out of Splunk Observability Cloud, or after 30 days, whichever comes first.

To create a user API access token that doesn’t expire when you log out of Splunk Observability Cloud but still expires after 30 days, use the v2/session endpoint. For more information, see Sessions Tokens.

API requests that require a user API access token created by an administrator 🔗

These API requests require a user API access token created by an administrator.

API

Task

Integration

Create, update, delete, or validate an integration

Org token

Create, update, or delete an org (access) token, or rotate an org token secret

Dashboards and dashboard groups

Change or remove write permissions for a user other than yourself

Detectors

Change or remove write permissions for a user other than yourself

Organizations

The following API requests require a User API access token associated with an administrator:

  • Retrieve information for your organization

  • Retrieve information for one or more organization users

  • Create, update, or delete a custom metric category

  • Invite a user to your organization

  • Invite a group of users to your organization

  • Grant administrative access to a user

  • Delete a user from your organization

Teams

Create, update, or delete a team, or remove a team member other than yourself.

You can manage permissions on items for which you already have permissions, even if you’re not an administrator.

If you’re an administrator, you can see how a user created or updated an object using a particular user API access token by selecting Info from the object’s Actions menu.

For example, to see information for a dashboard, select Dashboard > Info from the dashboard’s Actions menu.

To track API calls by user, ask your users to obtain and use their own user API access tokens.