Authenticate API user
Once you Create a dedicated API user account, you need to Authenticate this user account with our Identity Provider (IDS). This will provide you with time-limited and scope-limited authentication token. The authentication token follows the JSON Web Token (JWT) standard.
How to obtain JSON Web Token (JWT):
Token expiration: The JSON Web Token (JWT) is valid for 60 minutes. After this period, the user is required to perform a new Authentication call to obtain a new token. Once the Admin account removes the API user account, the rights for API calls this user can still communicate with the API until his token expiration ends. |
1.Authenticate with the API User account credentials using the OAuth API endpoint.
2.The token returned to you is used to authorize all subsequent API calls.
To avoid connection problems, use the API based on location of your ESET PROTECT / ESET Inspect server (EU, US, JPN, CA). |
Swagger documentation for OAuth is available here. |
It is the user's responsibility to store your API user credentials securely. If your API User credentials are lost or stolen, an attacker will be able to call APIs on your behalf with your API user credentials and steal your data or cause other forms of damage. |