Client Secret

If you want to get access token with a client secret in an app registration, follow the instructions below to send a POST request:

1. Set the following access token URL for your IBM® Storage Protect for Cloud environment:
   • https://identity.sp4c.storage-defender.ibm.com/connect/token
2. Set the header to Content-Type: application/x-www-form-urlencoded.
3. Set the following parameters in the request body:
   • client_id – Copy theApplication (Client) ID value in the app registration and paste the value here.
   • client_secret – Copy theClient secret value that has been saved upon the creation of the app registration, and paste the value here.
   • scope – Set this value to audit.read.all, which is the assigned permission of the app registration.
   • grant_type – Set this value to client_credentials.
4. In the response, the access_token node represents the token value, and the expires_in node represents the token will be expired in how many seconds.