Permission requirements for REST API calls to generateToken

WarrenMedernach · ‎01-24-2023

I'm struggling with getting a non Portal site admin user account to be able to generate a token?

Using Postman if I generate a POST call with the username and password of the Portal Site Admin in the body to: https://<URL>/arcgis/tokens/generateToken I get a valid token back:

If I do this exact same call with a different user it reports back:

You are not authorized to access this information

Are there specific access requirements to be able to acquire a token?

shahkunal · ‎02-13-2023

Hello @WarrenMedernach ,

I think you need to use generateToken REST URL of your organization portal which will be https://<domain>/portal/sharing/rest/generateToken. Before that you need to create user in your organization with specific role and then hit above URL with the credentials

View solution in original post

shahkunal · ‎02-13-2023

Hello @WarrenMedernach ,

I think you need to use generateToken REST URL of your organization portal which will be https://<domain>/portal/sharing/rest/generateToken. Before that you need to create user in your organization with specific role and then hit above URL with the credentials

Gordon_Aberdeen · ‎11-10-2023

Did you ever solve this Warren?

WarrenMedernach · ‎11-10-2023

Hi Gordon,

Unfortunately no, I never did get past having to use an 'admin' level user to return a token.

Trevor_Hart · ‎11-15-2023

@WarrenMedernach I believe @shahkunal was correct. You appear to be requesting a token from the ArcGIS Server end point. If your ArcGIS Server is federated you will need to generate a token from the Portal end point. This will be valid for the ArcGIS Server once generated.

Remember, a federated ArcGIS Server doesnt know anything about any users except the admin user it was configured with - hence the error.

WarrenMedernach · ‎11-17-2023

Thanks for the confirmation/reminder Trevor. I have confirmed that a non-admin can indeed authenticate through the Portal generatetoken call.