How to Generate a JSON Web Token (JWT) for RSA SecurID Access Administration API Calls
5 months ago
Originally Published: 2022-09-25
Article Number
000067966
Applies To
RSA Product Set: SecurID Access 
RSA Product/Service Type: Cloud Authentication Service
 
Issue

You need a valid JWT to authenticate Administration API calls made to the RSA Cloud Authentication Service.

Resolution

Generate an API key

1. Access the Cloud Administration Console

2. Navigate to Platform > API Key Management 

3. Under the Administration API Key, click ADD to create a new key

4. Save & Download the key file

Using the Cloud Administration REST API client

1. Download the Cloud Administration REST API client

2. Store the key file obtained in step 4 under <client_home>/rsa-securidaccess-rest-client-sdk-2.7.2/bin

3. Open a Command Prompt window

4. Navigate to SDK bin directory:

cd <client_home>/rsa-securidaccess-rest-client-sdk-2.7.2/bin

5. Run generatetoken command:

rsa-securidaccess-rest-client-sdk -f <keyfile.key added in step 2> -o generatetoken


6. Add the token to your API requests in the Authorization header:

Authorization: Bearer <JWT>


 

Notes
1. The JWT has a maximum lifetime of 60 minutes, which is also the default set value.

2. All API keys can be created using the Help Desk Administrator role, except for 2 calls where the Super Administrator role should be used to generate the key

 a. Add/Remove High-Risk User API
 b. Retrieve High-Risk User List API

3. Refer to Using the Cloud Administration APIs for more information 
 

Related Articles

Trending Articles

Don't see what you're looking for?