API Explorer
API Explorer
Getting Started
Asset Management
Authentication and Authorization
Inventory Source Management
Protection Policies
Storage Management

Authentication and Authorizations

In this tutorial, you can learn about authentication and authorization in PowerProtect Data Manager.


Authenticate using username and password

PowerProtect Data Manager supports authentication with the username and password that is:

  • Created during the PowerProtect Data Manager installation process
  • Updated from the PowerProtect Data Manager Administration > Users page
curl --request POST \
  --url https://<your-ppdm-server>:8443/api/v2/login \
  --header 'content-type: application/json' \
  --data '{"username":"<your-user-name>","password":"<your-password>"}'

Sample response:

    "access_token": "<access-token>",
    "token_type": "Bearer",
    "expires_in": 28800,
    "jti": "fe9d7333-758c-421c-90f4-fa96caa4ee7d",
    "scope": "aaa",
    "refresh_token": "<refresh-token>"

Role Based Authorization Control

In PowerProtect Data Manager, three roles are defined:

  • Admin - The most privileged role
  • User - Includes most view operations but not management operations
  • Export and Recovery Admin - Provides limited view privilege, but has export and recovery privilege

Each API will be shown with role names. For example, if an API is marked as:

This endpoint supports execution by the following roles: admin,user

Then only those accounts with role Admin or User can be run.