# Creating and Managing API Client in Malwarebytes Console

## 1. Introduction

A valid OAuth2.0 Client ID, Client Secret, and Account ID are required in order to access Malwarebytes API.

## 2. Prerequisites

- Access to the Malwarebytes Cloud Console
- Administrator privileges


## 3. Generate API Credentials

### Step 1: Access the Malwarebytes Cloud Console

- Log in to your Malwarebytes Cloud Console instance with administrator privileges.


### Step 2: Create API Client

- Navigate to the "Integrate" section in the console
- Click on "Add Client"
- Configure the client with the following permissions:
  - Read
  - Write
  - Execute
- Save the generated OAuth2.0 Client ID and Client Secret


### Step 3: Get Account ID

- While in your tenant dashboard, copy the URL from your browser and provide it as the account_identifier
- The provider configuration will accept either the raw uuid account_identifier or the full URL with account_identifier
- The URL will be in the format: `https://cloud.malwarebytes.com/{account_identifier}/dashboard`
- Extract the `account_identifier` portion from the URL
  - Example: From `https://cloud.malwarebytes.com/xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx/dashboard`
  - The account_id would be: `xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx`


## 4. Configure the Integration

### ClientId

The OAuth2.0 ClientId is generated whent he new API Client is generated on the tenant via the Integrate section of the console.

### ClientSecret

The OAuth2.0 ClientSecret is generated when the new API Client is generated on the tenant via the Integrate section of the console.

#### AccountId

The account Id is found in the URL when signed onto the tenant. It can be retrieved from the URL.