# Token Manager

This tutorial guides you through generating and managing authentication tokens in the Data Center Designer (DCD).

{% hint style="info" %}
**Note:** The **API/SDK Authentication Token Manager** can be used by any user but is mandatory for **2FA enabled** and **forced accounts**.
{% endhint %}

## Generate authentication token

In the DCD, you can now generate the authentication token to securely access IONOS Cloud APIs and SDKs by using the **API/SDK Authentication Token Manager**. Along with improved user security, the **Token Manager** offers a seamless user experience to generate tokens in a simplified way and use the token several times to access the APIs and SDKs. You can generate up to **100** authentication tokens and use any of these token values for authorizing access to APIs and SDKs.

To create a secure authentication token for authorizing to use APIs and SDKs, follow these steps:

1. In the **DCD**, go to **Menu** > **Management** > **Token Manager**.

![Token Manager option in the drop-down](/files/Iggx05uX697yzHXV1HiW)

2. In the **API/SDK Authentication Token Manager**, select **Generate Token**.
3. Copy the **Token ID** and **Close** the **token-generated** window.

{% hint style="warning" %}
**Warning:** You must save the token value for future uses. You will not be able to see the token value again due to security reasons.
{% endhint %}

{% hint style="info" %}
**Note:** You can download the token value as a text file for future uses by selecting the **Download** option next to the **Token Value**.
{% endhint %}

![Generate authentication token](/files/Y1FyFiZL8WPZptO8CRS7)

{% hint style="success" %}
**Result:** An authentication token is generated and listed in the **API/SDK Authentication Token Manager** screen.
{% endhint %}

![Authentication token generated in the API/SDK Authentication Token Manager screen](/files/ul7zbinQbNIpZi9QitTQ)

### Authentication token attributes

* Each token has a **Time To Live (TTL)**, which is the duration for which a token is valid before it expires and becomes inactive. Select a **TTL** value from the drop-down list. The following are the possible values:
  * 1 Hour
  * 4 Hours
  * 1 Day
  * 7 Days
  * 30 Days
  * 60 Days
  * 90 Days
  * 180 Days
  * 365 Days
* Each token consists of:
  * **ID:** This is the ID of the token which you can use in the [<mark style="color:blue;">Auth API</mark>](https://api.ionos.com/docs/authentication/v1/). For example, to [<mark style="color:blue;">delete the token</mark>](https://api.ionos.com/docs/authentication/v1/#tag/tokens/operation/tokensDeleteById) by ID.
  * **Creation Date:** The date and time stamp of the token.
  * **Expiration Date:** The date and time stamp when the token becomes invalid depending on the defined TTL at the time of token generation.
* The generated token is listed in the **API/SDK Authentication Token Manager** screen.
* The **Token Value** is displayed only once on generation, and you must save this value for future use.
* The token is valid based on the defined **TTL field** at the time of token generation.

  ![Authentication token attributes](/files/ul7zbinQbNIpZi9QitTQ)

### Delete an authentication token

{% hint style="info" %}
**Note:** The deletion of a token in the Authentication Token Manager will result in the deactivation of the token even when it has not expired. It becomes invalid immediately.
{% endhint %}

To delete an authentication token, follow these steps:

1. In the **DCD**, go to **Menu** > **Management** > **Token Manager**.
2. In the **API/SDK Authentication Token Manager**, select the authentication token to delete and select the **Delete** option.
3. Select **Delete** to confirm.

![Deletion of an authentication token](/files/zIAI0MXKgYf0VXt2riTV)

{% hint style="success" %}
**Result:** The authentication token is successfully deleted and removed from the tokens list in the **API/SDK Authentication Token Manager**.
{% endhint %}


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://docs.ionos.com/cloud/set-up-ionos-cloud/management/identity-access-management/token-manager.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.