Using basic Auth

As an Administrator, you can choose to authorize by sending a username and password with every request for authentication.

Forcepoint ONE SSE recommends creating a dedicated config API admin authorized to only use the API via an Admin Role. This is not necessary but recommended as best practice.
  • Under IAM > Admin Roles, create a new admin role and ensure that under API all the components are set to view.

  • Also, make sure this account has at least view access to other components related to the log dashboards and the data it contains. Also, add at least view access to Logs, Policies, and Users and Groups.






  • All API calls must use HTTPS for basic Auth, that is the username and password of an API admin must be sent with every request.
  • Access to manage users/groups of a particular email domain can also be controlled in the assigned Admin role.
    Note: Authorization can be controlled via the Forcepoint ONE SSE Admin Portal app in Protect > Policies. Refer to the Configuring Admin portal policy.
Example: 
curl -u admin@acme.com:testpassword123 "https://portal.btglss.net/api/bitglassapi/logs?type=cloudsummary&responseformat=csv&startdate=2016-09-10T04:25:05Z&cv=1.1.5