In addition to the default service accounts provided for Tridion Sites, you can create your own custom service accounts in Access Management to provide authentication for other APIs.
Procedure
- From the slide-out navigation, select Access Management.
- Go to the Service accounts tab where you can view the list of existing service accounts.
- At the top of the list page, select Add service account.
- Follow the on-screen instructions to define the new account.
Note the following:
- For Client ID, Access Management automatically provides a unique GUID; however, you can change the ID to whatever you like. Be aware that after saving the service account, you can no longer change the ID.
- You will be able to define a client secret to go with this client ID only after saving the account.
- Under Services and Roles, select all APIs and roles to which the new service account should have access.
- Click Save.
- Add at least one client secret, as follows:
- In the Client secrets section, select Add client secret. Access Management generates a new client secret.
- Use the copy button to copy the secret to your clipboard, and then paste and save the secret a secure location. You cannot copy a secret that has been previously generated and saved.
- If needed, modify the expiration date of the secret.
The default and maximum expiration is one year. You can change it to be shorter than that, but no longer.
- Select Save.