Create API access key
Creates a new API access key credential in the current organization. The secret access key value is returned only once.
Authorizations
Short-lived bearer access token issued for a Living Security API access key. Send as Authorization: Bearer .
Headers
Organization context for multi-tenant operations
Body
Human-readable name for the API access key credential, usually the owning integration or automation
1 - 255"SIEM Export Integration"
Optional expiration timestamp for the API access key credential in ISO 8601 format. Omit for no scheduled expiration.
"2027-01-01T00:00:00Z"
Credential type. user_bound keys are associated with the creating user's identity; service_account keys are intended for non-human service integrations.
user_bound, service_account Permission scopes for the API access key credential. Defaults to [""] (full access). Use "push-ingest:" to restrict the credential to push data ingestion only.
*, push-ingest:* Response
Stable API access key identifier
Human-readable name for the API access key credential, usually the owning integration or automation
Credential type for the API access key. user_bound keys are associated with the creating user's identity; service_account keys are intended for non-human service integrations.
user_bound, service_account Email address associated with the API access key credential when the credential is user-bound
API access key status
active, revoked Timestamp when the API access key credential was created
Identifier of the user who created this API access key
Permission scopes assigned to this API access key
One-time secret access key value. Store it immediately; it cannot be retrieved after creation or rotation.
Last time the API access key was used
Expiration timestamp for the API access key credential

