Prerequisites
- You need an active IBM API Connect subscription with a running instance.
- You need at least one organization, catalog, and application already configured in your IBM API Connect instance.
Create an API Key in IBM API Connect
Navigate to the Subscriptions page in the IBM SaaS Console and click 'View instances' under your API Connect subscription.

Click 'Open' to open your API Connect instance.

Once inside the API Connect dashboard, click on your profile icon in the top-right corner and select 'My API Keys'.

Click the 'Add' button to create a new API key.

Fill in the API key details and click 'Create'.

- Title — Give the API key a descriptive name (e.g.
infisical-api-key). - Description — Add a description for the key (e.g.
Key used by Infisical for creating Dynamic Secrets). - API key timeout — Set the timeout to
0to disable expiration, or configure it based on your needs. - Enable multiple use — Check this box to allow the API key to be used multiple times.
Collect the Instance URL, Client ID, and Client Secret from the 'My API Keys' page.

- Instance URL — Copy the server URL shown in the CLI command (e.g.
https://platform-api.trial.apiconnect.automation.ibm.com). - Client ID — Found in the
client_idfield of the “Authenticating for the platform REST API” curl snippet. - Client Secret — Found in the
client_secretfield of the same curl snippet.
Set up Dynamic Secrets with IBM API Connect
Open Secret Overview Dashboard
Click on the 'Add Dynamic Secret' button

Select IBM API Connect

Provide the inputs for dynamic secret parameters
https://platform-api.trial.apiconnect.automation.ibm.com).Click `Submit`

Generate dynamic secrets

When generating these secrets, it’s important to specify a Time-to-Live (TTL) duration. This will dictate how long the credentials are valid for.
Once you click the Submit button, a new secret lease will be generated and you will be presented with the generated Client ID and Client Secret.Audit or Revoke Leases
Once you have created one or more leases, you will be able to access them by clicking on the respective dynamic secret item on the dashboard. This will allow you to see the expiration time of the lease or revoke a lease before its time to live expires. When a lease is revoked (either manually or by TTL expiration), Infisical will delete the corresponding application credential from IBM API Connect.
Renew Leases
To extend the life of the generated dynamic secret leases past its initial time to live, simply click on the Renew button as illustrated below.