Generating Authentication Token Using Windows PowerShell script

JJENSEN3
JJENSEN3 used Ask the Experts™
on
I am, at best, a novice user when it comes to writing Powershell scripts, so any simplified explanation to this question would be appreciated.
I am accessing one of our vendors API services. In order to access it, I need to generate an authentication token. I have the url to send the request to, and I have the username and password. What I am not sure of, is how to write the script to retrieve the token. Is there a "generic" method to do this?

Again, feel free to break it down to the most basic of terms. I won't be offended. :)

Thank you in advance.
Comment
Watch Question

Do more with

Expert Office
EXPERT OFFICE® is a registered trademark of EXPERTS EXCHANGE®
View Solution Only
ITguy565

Commented:
I believe this is what you are looking for :
$Credential = Get-Credential
$Token = Get-MgmtSvcToken -Type Windows -AuthenticationSite "https://Computer01:30072" -ClientRealm "http://azureservices/AdminSite" -User $Credential -DisableCertificateValidation

Open in new window


reference : https://docs.microsoft.com/en-us/powershell/module/mgmtsvcadmin/get-mgmtsvctoken?view=azurepack-ps
ITguy565

Commented:
You can also try it like this :

The following method allows you to create the token and then post it to an API.

Capture.PNG
reference : https://vss-wiki.eis.utoronto.ca/display/API/How+to+generate+an+access+token+using+PowerShell
footech
Top Expert 2014

Commented:
There isn't really any generic method for this.  The information and syntax that you will have to supply in the web request will vary depending on the design of the API, and as such the API documentation is a must to proceed.  Anything I provide here is only an example of how things might be used.

Here's a sample showing how I had to do something similar for a particular environment.
# Define a base part of the URL (useful when there may be different environments, e.g. sandbox and production)
$restURLbase = "https://restapi.somedomain.com"

# Get an access token for later calls
$authBody = @{
    grant_type = 'password'
    username = 'someuser'
    password = 's0mePa$s'
    }
$authURL = "$restURLbase/authorization"
$auth = Invoke-RestMethod -Uri $authURL -Method Post -Body $authBody

# Make a request using the access token
$headers = @{
    Authorization = "$($auth.tokenType) $($auth.accessToken)"
    }
$restURL = "$restURLbase/something/blah"
$data = Invoke-RestMethod -Uri $restURL -ContentType 'application/json' -Method Get -Headers $headers

Open in new window

CompTIA Network+

Prepare for the CompTIA Network+ exam by learning how to troubleshoot, configure, and manage both wired and wireless networks.

Learn More!
JJENSEN3

Author

Commented:
Footech,
This is all that I have been given by the API owner:

https://api.xxx.com/xxx/authenticate

Post below request to above URI
{
  "username":"oldenkamp",
  "password":"<password>"
}
Above request will get you Response as below:
{
    "status": "success",
    "id_token": "eyJraWQiOiJuZjlzTzhaeENtbXVCNVF2eFJ0eXE4cU55RGF2OGF2VTBvaWJQeVllcDZvPSIsImFsZyI6IlJTMjU2In0.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.OiRtt_zUlxM6aQAll6rL4zUI10L1ZOJT4-XXhxjpuf9TbJUj0En55yu2QoFXepC5hBQgoFHCxLcvgae057e9H9wL4ylve4GHwSYTj_2ue0nblLrELrtS0b30r3MjIZV5I9L7Z2H2166FDreYW0QBZYcbJ6LHpo2GrkWBWGzgZ6p-AIoEL4sz5KyFMoMAclhG9uYAmwPX2Jnv62CMgbKtgjdqtdGSa6eNwlv-GtFoew4QIIvNdfQQ2Cegm4nPw024_xKqBvcgenkLkEYzwdNcQEf1lj9fYnk-szUtpiw6gPaU61jyvFdydGSw0TKmEUhV40QK21OiOiS50NTtlfpD2Q"
}


They are expecting it via Postman, but I am trying to automate it via Powershell.
Top Expert 2014
Commented:
Give the following a shot.
# Define a base part of the URL (useful when there may be different environments, e.g. sandbox and production)
$restURLbase = "https://api.xxx.com/xxx"

# Get an access token for later calls
$authBody = @{
    username = "oldenkamp"
    password = "<password>"
    }
$authURL = "$restURLbase/authenticate"
$auth = Invoke-RestMethod -Uri $authURL -Method Post -Body $authBody

Open in new window

Check out the contents of $auth to see if it was successful.
JJENSEN3

Author

Commented:
Footech, your example got me close enough to produce a result. I did have to make small modifications to fit the API, but it was a good example. Thanks to all for the help.

Do more with

Expert Office
Submit tech questions to Ask the Experts™ at any time to receive solutions, advice, and new ideas from leading industry professionals.

Start 7-Day Free Trial