An OAuth 2.0 application requires a client secret to authenticate its identity when requesting an access token to call Alibaba Cloud APIs. This process applies only to OAuth 2.0 applications, as OAuth 2.1 applications use other authentication mechanisms. This topic describes how to create a client secret for your application.
Procedure
Log on to the RAM console as a RAM administrator.
In the left-side navigation pane, choose .
On the Enterprise Application tab, click the name of the target application.
On the Application Secret tab, click Create Secret.
In the Create Secret dialog box, copy the new secret and save it in a secure location. After you have saved the secret, click Close.
NoteThe application secret is displayed only once and cannot be retrieved later. You must store it in a secure location immediately.
An application can have a maximum of two active secrets. This allows you to rotate secrets without causing downtime.