> **Source:** https://knowledge.leegality.com/document-execution/settings/account-level/API/how-to-enable-api > **Site:** Leegality Knowledge Base — https://knowledge.leegality.com > **About:** Leegality is a document execution platform covering eSigning, stamps, NeSL, workflows, and REST API integration. > **Navigation:** Every article on this site has a plain-text version at `.txt` (this format). To get an index of all articles with their `.txt` links, read: https://knowledge.leegality.com/llms.txt > **AI Guide:** For instructions on how to navigate this knowledge base as an AI agent, read: https://knowledge.leegality.com/ai-readable.txt --- # Leegality API By default, APIs are deactivated for every account and must be manually activated. You need to enable API in order to generate Auth Token and Private Salt. ## How to Enable API To activate API in your account: 1. Click on the **Setting** ⚙️ icon on the top right corner. 2. From the left panel, go to **Settings > API**. 3. Click the **Enable API** button. This will generate the two API credentials; Auth Token and Private Salt. > **Warning** > > Do not share your Auth Token and Private Salt with anyone. Your Auth Token and Private Salt are sensitive credentials that grant access to your Leegality account and verify API calls and webhook requests. Sharing these credentials compromises the security of your account and exposes your data to unauthorized access and potential misuse. ## How to get Auth Token The Auth Token is a unique identifier that allows Leegality to validate API calls. It must be passed in the X-Auth-Token header parameter while making API calls (refer to [API documentation](https://docs.leegality.com/v3)). You can get the Auth Token to by clicking the “Copy” icon. You can also generate the new Auth Token by clicking the “Refresh” icon next to the Auth Token field. > **Tip** > > If you suspect that your Auth Token has been compromised, regenerate it immediately and take necessary security measures to safeguard your account. ## How to get Private Salt The Private Salt is used to verify the webhook calls made by Leegality. To verify webhook calls using the Private Salt, refer to the ‘mac’ parameter in our webhook documentation. Private Salt can only be regenerated by disabling and enabling the API. ## How to Disable API To disable your API access for your account, click the “Disable API” button, and Leegality will delete the associated auth token, private salt, and whitelisted IP addresses.