--- title: "Programmatic Access to Fortanix Armor IAM" slug: "programmatic-access-to-fortanix-armor-iam" updated: 2026-03-02T06:37:48Z published: 2026-03-02T06:37:48Z canonical: "support.fortanix.com/programmatic-access-to-fortanix-armor-iam" --- > ## Documentation Index > Fetch the complete documentation index at: https://support.fortanix.com/llms.txt > Use this file to discover all available pages before exploring further. # Programmatic Access to Fortanix Armor IAM ## 1.0 Introduction This article explains how to generate an **access token** using client app credentials to programmatically authenticate with Fortanix Armor solutions. ## 2.0 Generate an Access Token To programmatically access **Fortanix Armor** solutions, you must first obtain an **access token** using your client app’s `app_id` and `api_key`. This access token authorizes subsequent API calls to Fortanix Armor and Fortanix Key Insight. **Example Request:** ```bash ENCODED_CREDENTIAL=$(echo -n 'app_id:api_key' | base64) curl -X POST \  -H "Authorization: Basic ${ENCODED_CREDENTIAL}" \  -H 'X-Csrf-Header:""' \  -H 'Content-Type: application/x-www-form-urlencoded' \  -d "grant_type=client_credentials" \  https://api.armor.fortanix.com/api/v1/iam/session/oauth2/token \ | jq -r '.access_token' ``` Where, - `app_id` – The unique identifier of the client app created in Fortanix Armor IAM. The app ID is available on the client app’s details page. ![A blue rectangular object with a black stripe AI-generated content may be incorrect.](https://cdn.us.document360.io/c3bd85d2-4ad8-4d85-9f60-f1c168a3aad9/Images/Documentation/programmatic-access-to-fortanix-armor-iam-image-1tj3z1qk.png) **Figure 1: Access client app ID** - `api_key` – The API key generated for the client app (must be stored securely). *For information on obtaining the API key from the client app, refer to*[*Fortanix Armor Identity and Access Management (IAM)*](https://support.fortanix.com/docs/fortanix-armor-identity-and-access-management-iam#511-add-a-client-app). ![A screenshot of a computer AI-generated content may be incorrect.](https://cdn.us.document360.io/c3bd85d2-4ad8-4d85-9f60-f1c168a3aad9/Images/Documentation/programmatic-access-to-fortanix-armor-iam-image-zumkxlr0.png) **Figure 2: Access client app API key** - `grant_type` – Always set to `client_credentials`. - The **Base64-encoded credential** (`app_id:api_key`) – Used for authentication as a bearer token. The above API returns a JSON response containing an `access_token`. This access token must be included in the **Authorization** header for all subsequent REST API calls. *For information on*using*the access token in REST API calls, refer to*[*Programmatic Access to Fortanix Key Insight APIs*](https://support.fortanix.com/docs/programmatic-access-to-fortanix-key-insight-apis)*.* > [!NOTE] > NOTE > > The access token is valid for **60** seconds. After it expires, you must generate a new token to continue performing API requests. ## 3.0 Fortanix Armor REST APIs *For detailed information on Fortanix Armor and Fortanix Key Insight REST APIs, refer to the*[*Fortanix Armor API*](https://support.fortanix.com/apidocs/introduction-4)*documentation.* Fortanix Armor is a comprehensive cybersecurity solution that protects data and applications across on-premises, hybrid, and multi-cloud environments. It integrates Fortanix solutions into a single unified product, securing data throughout its lifecycle. Built on the **Confidential Computing** **Platform**, it ensures real-time encryption of data at rest, in transit, and during processing. Additionally, it includes platform services such as Identity and Access Management (IAM), Key Management Service (KMS), and Audit and Monitoring to simplify security management. Fortanix Key Insight identifies encryption keys and data services across on-premises and hybrid multicloud environments, providing a unified dashboard for tracking key mappings and cryptographic security. It offers security and compliance teams data-driven insights to assess risks, align with best practices, and meet industry regulations. Iy also supports continuous risk mitigation and crypto-agility, adapting to evolving security needs, including preparation for the post-quantum era.