Authorization and Security

In this article

    To start working with the Veeam Service Provider Console REST API, clients must first authenticate themselves and receive authorization grant by obtaining an access token and a refresh token.

    • Access token is a string that represents authorization issued to the client and must be used in all requests during the current logon session. By default, access token expires after 1 hour.
    • Refresh token is a string that represents authorization granted to the client and can be used to obtain a new access token when the current access token expires.

    To obtain an access token, the client uses one of the following authentication types:

    After first authorization, you can configure the following options to optimize authentication process: