Must have administrator privileges on your SAC tenant.
Must be comfortable with curl.
Starting with Authentication
Authentication is done using OAuth2 with the Bearer authentication scheme.
Generate an API client using the SAC Admin portal (usually at admin.acme.luminatesec.com/#/settings/api-clients) and make sure to choose one of the three SAC management API’ permission. 1. Don’t allow access… - This is the equivalent to creating a non-admin user. It can be assigned to an application to receive access. Management API = Admin rights. All of the actions that are available in the UI can also be performed by API commands. 2. … Read-only … - The API client will be authorized to use all of the “Get” commands as described in the API documentation. 3. …. Full Access – The API Client will be authorized to do whatever they like as described in the API documentation ( You have to be authorized to “Post” to make changes)
Copy the ‘Client Id’ and the ‘Client Secret’ so they can be used for OAuth authentication: