Requesting Passwords from Application Token

the kron pam application token restful api should be used to request passwords each application token account needs to authenticate itself using its token, which is revealed after the account creation aapm account tokens can also be displayed in the application token tab restful api parameters used for application token password checkout token the application token account token passwordexpirationinminute password expiration time possible values are taken from the aapm show\ password expiration time values property in the system config man screen if it is not defined, the possible values are taken from the sapm show\ password expiration time values property the default value is 5m,30m,2h,24h options are separated with commas (“,”), “m” stands for minutes, and “h” stands for hours comment the password request comment passwordchangerequired optional parameter with the default value set as “false” if “true”, the password is changed before retrieval, otherwise, the password is changed after retrieval sapmaccountpath the account path of the linked account sapmaccountname the account name of the linked account responsetype by default, it is the default response type (plain text for dynamic accounts) this value can also be set as “json” to receive the responses in json pin the pin code sent to the application for pin authentication tenantid if the multitenancy structure is active, it is specified from which tenant the request is sent application token restful api request example basic method the password is accessed as a result of the request sent with the correct parameters https //single connect url 443/sc aapm ui/rest/aapm/password?passwordexpirationinminute=30\&passwordchangerequired=true\&comment=comment\&token=c5838228 61ec 4b47 b72d af0321db24b7\&sapmaccountpath=/test\&sapmaccountname=test\&responsetype=json\&tenantid=host parameter name parameter value passwordexpirationinminute 30 passwordchangerequired true comment comment token c5838228 61ec 4b47 b72d af0321db24b7 sapmaccountpath /test sapmaccountname test1 responsetype json tenantid showusername false pin method the first request the first request https //single connect url 443/sc aapm ui/rest/aapm/password?passwordexpirationinminute=30\&passwordchangerequired=true\&comment=comment\&token=c5838228 61ec 4b47 b72d af0321db24b7\&sapmaccountpath=/test\&sapmaccountname=test\&responsetype=json\&tenantid=host the second request (which is applicable for all security levels that require pin authentication) https //single connect url 443/sc aapm ui/rest/aapm/password?passwordexpirationinminute=30\&comment=comment\&token=c5838228 61ec 4b47 b72d af0321db24b7\&sapmaccountpath=/test\&sapmaccountname=test\&responsetype=json\&pin=123456\&tenantid=host aapm restful api response example x5#okle5 (the password)