Managing VMS API Tokens

  • Updated on Jan 31, 2026
  • Published on Jan 26, 2026
  • 1 minute(s) read
Prev Next

VMS enables you to create and manage tokens that can be used to securely authenticate calls to the VMS REST API, instead of passing a user name and password. An API token authorizes usage of the endpoints for which the user has the required RBAC permissions.

API tokens can be managed using the  and the VMS API.

API Token Limits per User

By default, users can have up to five valid tokens simultaneously. The number of tokens allowed per user is configurable for all manager users on the cluster.

Permissions Required to Manage API Tokens

All VMS manager users can view the properties of their API tokens.

Managing API tokens and viewing other users' tokens requires the following permissions:

Realm

Permission

Allowed Action

Security

Create

Create API tokens.

Edit

Modify API tokens.

Delete

Revoke API tokens.

View

View other users' API tokens.

Managing API Tokens with the VAST REST API

Refer to the VAST Management Service (VMS) REST API Documentation.

Related articles
  • Managing VMS API Tokens
    VAST Cluster > Version 5.3 > VAST Cluster 5.3 Tenant Administrator’s Guide > Managing Tenant Administrators
  • Managing VMS API Tokens
    VAST Cluster > Version 5.4 > VAST Cluster 5.4 Administrator's Guide > Administrating VMS > VMS Administrator Users and Permissions
  • Managing VMS API Tokens
    VAST Cluster > Version 5.3 > VAST Cluster 5.3 Administrator's Guide > Administrating VMS > VMS Administrator Users and Permissions