Introduction to Credentials

Important:Your account’s user with the Administer organization role can add new credentials, rotate credential information, and remove credentials. For details on managing credentials for users, groups, and accounts in your organization, see Access Management. For complete descriptions of each role available in Flexera One, see Flexera One Roles.

Credentials provide a centralized method to provide users access to external systems, such as cloud providers. When applying a policy that needs to communicate with external APIs, users are able to select which Credential to use to authorize to the external API.

Credentials are scoped to an account within Flexera One. They are created in an account and can only be used by policies applied in that account.

Credentials contain only the key material used to authenticate to an API - the other details of the API, including the URL, tenant information, etc, are specified in the policy template itself or provided as inputs when a policy is applied.

Generally speaking, to authenticate against an external API, you need to use the 3rd-party system to set up an authentication principal that can be used by Flexera when making API calls. Different systems use different types of authentication methods, the most common of which are supported by credentials. For details, see Generic Credentials. For some providers, Flexera provides Provider-Specific Credentials to simplify the configuration process. If you would like additional supported credential types, contact Flexera support.