IAM token

An IAM token (or just token) is a unique sequence of characters issued to a user after authentication. The user needs this token for authorization in the Yandex.Cloud API and access to resources.

Specify the received IAM token when accessing Yandex.Cloud resources via the API. Pass the IAM token in the Authorization header in the following format:

Authorization: Bearer <IAM-TOKEN>

The IAM token is valid for 12 hours. After that period expires, get a new IAM token.

In the management console and the command line interface (CLI), the token is obtained and used without the user needing to do anything.

Services that support this authentication method

This authentication method is supported by all services, except for those with AWS-compatible APIs (they only need an IAM token for managing access keys and service accounts).

See also

• Getting an IAM token for a Yandex account
• Getting an IAM token for a service account
• Working with Yandex.Cloud from inside a VM
• Authorization in Yandex.Cloud