Authorization generates a unique set of API keys for each user account. These keys allow your application to authenticate to the API without creating a session.

To authorize your application to use the API, you must include the X-ApiKeys header element in your HTTP request messages.

X-ApiKeys Header Element

The X-ApiKeys header element has the following format:

X-ApiKeys: accessKey=ACCESS_KEY; secretKey=SECRET_KEY;

The ACCESS_KEY and SECRET_KEY parameters correspond to the API keys that generates for each system user. For more information, see Generate an API Key in the Vulnerability Management User Guide.


curl -H "X-ApiKeys: