Personal Access Token and Service ID

Who can use this feature?

This features is in open beta.

Totango provides you with the following for purposes of integrating with other systems:

  1. API personal access token
  2. Service ID
  3. OAuth applications (learn more)

Create a personal access token

Your personal access token is used to sync data into Totango via APIs or gain access to your Totango from third-party systems. You can create multiple tokens and revoke access as needed.

Personal access tokens are intended for personal use when writing scripts/applications that access Totango API. Protect them as you protect your password, as they provide the same access to your user account. Do not share them with anyone.

Tokens are dependent upon the user with whom they're associated. If disabling or deleting Totango global admin who has a personal access token in use for system integrations and APIs, the token must be replaced by a personal token of an active Totango global admin. When deploying your application elsewhere, we recommend using Totango OAuth Applications instead.

  1. From within Totango, click your profile icon and choose Edit Profile.
  2. From the Integration tab, click Create Token.
  3. In the New Token Details window, enter the following details:
    • Token Name: Choose a name to identify the token among others within your profile.
    • Expiration Time: Choose from 7, 30 60, 90 days, no expiration, custom
  4. Click Generate Token.

    A token is available to copy and paste directly into the third-party system.
  5. Click Close.

The token is available to edit (name and expiration) or delete if you need to revoke access.

Delete an access token

When you delete an access token, any applications or scripts using the token will no longer be able to access the Totango API.

  1. From within Totango, click your profile icon and choose Edit Profile.
  2. From the Integration tab, locate the token you want to remove.
  3. Click the Ellipses (...) and choose Delete Token.
  4. From the confirmation window, click Yes, Delete.

Find your Service ID

Your Service ID represents your unique Totango account. 

  1. From within Totango, click your profile icon.
  2. Make note of the service information, which is built out of three parts: [SP]-[Account Number]-[Instance] = Service ID. In the following example, SP-234164-01 is the service ID.

FAQs

Question: Why must a personal access token be tied to a user profile?

Answer: It's a security and compliance best practice to track data changes back to individual users (i.e., audit log).


Question: I'm a global admin for my Totango instance. Is there a way for me to see which of my users have personal access tokens?

Answer: Currently no. We recommend each business implements its own policy for creation and inventory of personal access tokens. For third-party integrations that fall outside of personal use, we recommend using Totango OAuth Applications instead.

Was this article helpful?

3 out of 5 found this helpful

Have more questions? Submit a request