DocumentationAPI keys in Settings

API keys in Settings

Create, copy, and scope API keys from the dashboard.

API keys are created and revoked from Settings → API keys in the dashboard. The UI wraps the same POST /tenants/:id/api-keys flow documented in the REST reference.

Create a key

  1. Open Settings

    Dashboard sidebar → SettingsAPI keys

  2. Create

    Click Create API key, enter a descriptive name (prod-nextjs, staging-crm)

  3. Select scopes

    Check only the permissions your integration needs. See the scope table below.

  4. Copy once

    The full key (mc_live_... or mc_test_...) is shown only once. Store it in your secret manager immediately.

Scope selection

ScopeGrants access to
email:sendSend emails, batch, scheduled
email:readEmail logs, cancel scheduled
contacts:read / contacts:writeAudience and GDPR erasure
campaigns:read / campaigns:writeNewsletter campaigns
suppressions:read / suppressions:writeSuppression list
webhooks:manageOutbound webhook endpoints
sequences:read / sequences:writeAutomated sequences (API)

Revoke and rotate

From the same screen, revoke unused keys. For rotation:

  1. Create a new key with the same scopes
  2. Update deployment secrets
  3. Revoke the old key

See also API key security and API keys and scopes.