Important: We are no longer accepting new registrations for the Play EMM API.
Learn more.
Users: generateAuthenticationToken
Stay organized with collections
Save and categorize content based on your preferences.
Generates an authentication token which the device policy client can use to
provision the given EMM-managed user account on a device.
The generated token is single-use and expires after a few minutes.
You can provision a maximum of 10 devices per user.
This call only works with EMM-managed accounts.
Request
HTTP request
POST https://www.googleapis.com/androidenterprise/v1/enterprises/enterpriseId/users/userId/authenticationToken
Parameters
| Parameter name |
Value |
Description |
| Path parameters |
enterpriseId |
string |
The ID of the enterprise.
|
userId |
string |
The ID of the user.
|
Authorization
This request requires authorization with the following scope:
| Scope |
|---|
https://www.googleapis.com/auth/androidenterprise |
For more information, see the authentication and authorization page.
Request body
Do not supply a request body with this method.
Response
If successful, this method returns a response body with the following structure:
{
"kind": "androidenterprise#authenticationToken",
"token": string
}
| Property name |
Value |
Description |
Notes |
token |
string |
The authentication token to be passed to the device policy client on the device where it can be used to provision the account for which this token was generated. |
|
kind |
string |
|
|
Except as otherwise noted, the content of this page is licensed under the Creative Commons Attribution 4.0 License, and code samples are licensed under the Apache 2.0 License. For details, see the Google Developers Site Policies. Java is a registered trademark of Oracle and/or its affiliates.
Last updated 2024-10-31 UTC.
[null,null,["Last updated 2024-10-31 UTC."],[[["\u003cp\u003eGenerates a single-use authentication token for provisioning an EMM-managed user account on a device, expiring after a few minutes.\u003c/p\u003e\n"],["\u003cp\u003eThis API call allows provisioning a maximum of 10 devices per user and is exclusively for EMM-managed accounts.\u003c/p\u003e\n"],["\u003cp\u003eAuthorization is required with the \u003ccode\u003ehttps://www.googleapis.com/auth/androidenterprise\u003c/code\u003e scope.\u003c/p\u003e\n"],["\u003cp\u003eThe response includes an authentication token to be used by the device policy client for provisioning.\u003c/p\u003e\n"]]],[],null,["# Users: generateAuthenticationToken\n\n| **Note:** Requires [authorization](#auth).\n\nGenerates an authentication token which the device policy client can use to\nprovision the given EMM-managed user account on a device.\nThe generated token is single-use and expires after a few minutes.\n\n\u003cbr /\u003e\n\n\nYou can provision a maximum of 10 devices per user.\n\n\u003cbr /\u003e\n\n\nThis call only works with EMM-managed accounts.\n\nRequest\n-------\n\n### HTTP request\n\n```\nPOST https://www.googleapis.com/androidenterprise/v1/enterprises/enterpriseId/users/userId/authenticationToken\n```\n\n### Parameters\n\n| Parameter name | Value | Description |\n|----------------|----------|---------------------------|\n| **Path parameters** |||\n| `enterpriseId` | `string` | The ID of the enterprise. |\n| `userId` | `string` | The ID of the user. |\n\n### Authorization\n\nThis request requires authorization with the following scope:\n\n| Scope |\n|-----------------------------------------------------|\n| `https://www.googleapis.com/auth/androidenterprise` |\n\nFor more information, see the [authentication and authorization](/android/work/play/emm-api/v1/how-tos/authorizing) page.\n\n### Request body\n\nDo not supply a request body with this method.\n\nResponse\n--------\n\nIf successful, this method returns a response body with the following structure:\n\n```text\n{\n \"kind\": \"androidenterprise#authenticationToken\",\n \"token\": string\n}\n```\n\n| Property name | Value | Description | Notes |\n|---------------|----------|-------------------------------------------------------------------------------------------------------------------------------------------------------------------|-------|\n| `token` | `string` | The authentication token to be passed to the device policy client on the device where it can be used to provision the account for which this token was generated. | |\n| `kind` | `string` | | |"]]