User permissions for integration via SOAP API

Anonymous
Not applicable

User permissions for integration via SOAP API

Hi dear Marketo community,

I wanted to know if I need any user permissions to implement Marketo integration using the SOAP API, in addition to the soap URL endpoint and the user ID and secret.

Thanks,

Ori
Tags (1)
3 REPLIES 3
Anonymous
Not applicable

Re: User permissions for integration via SOAP API

Hi Oren,

Marketo API security uses a simple yet highly secure model, based on HMAC-SHA11 signatures with messages transmitted over HTTPS. A key advantage of this model is that it provides stateless authentication.

HMAC-SHA1 signatures require the following:

  • A User ID (also called Access Key) that is transmitted with the service request

  • A Signature that is calculated using a shared secret-key and message content and is transmitted with the service request

  • A shared secret-key (also called Encryption Key) that is not transmitted with the service request

This security information is confirmed via Admin --> SOAP API within Marketo.

The client program will calculate the HMAC-SHA1 signature using the shared secret-key and part of the request message content. The client must include a SOAP header, AuthenticationHeaderInfo, to pass authentication information with the SOAP message.

Please refer to this article for further information: http://developers.marketo.com/documentation/soap/signature-algorithm/
 

Anonymous
Not applicable

Re: User permissions for integration via SOAP API

Thanks Chris,

Very helpful.
Anonymous
Not applicable

Re: User permissions for integration via SOAP API

That's great, Oren!
I'm glad I was able to help. 

Best regards,
Chris