Altostrat Studio is here — the AI-native network operations IDE for engineers running production. Terminal, diagrams, runbooks, and Copilot in one workspace. Get started →
Getting Started
Platform & Identity
Device Management & Orchestration
Automation & AI
Network Services & Connectivity
Security & Threat Management
Monitoring & Analytics
Core Services & Utilities
curl --request POST \
--url https://v1.api.altostrat.io/control-plane/{siteId}/transient-accesses \
--header 'Authorization: Bearer <token>' \
--header 'Content-Type: application/json' \
--data '
{
"expire_after_minutes": 60,
"type": "winbox",
"full_access": true,
"allow_rfc1918": false,
"allow_only_cidr": "203.0.113.42/32"
}
'{
"id": "f0e9d8c7-b6a5-4f3e-2d1c-0b9a8e7f6d5c",
"username": "transient-user-abc123",
"password": "P@ssw0rdABC123XYZ",
"port": 45821,
"type": "winbox",
"full_access": true,
"allow_rfc1918": false,
"allow_only_cidr": "198.51.100.10/32",
"revoked_early": false,
"expires_at": "2025-10-29T12:15:49Z",
"expired": false,
"entry_point": "edge-us-east-1a.ostrat.io",
"time_to_expire": "15 minutes from now",
"onclick": "winbox://edge-us-east-1a.ostrat.io:45821?username=transient-user-abc123&password=P@ssw0rdABC123XYZ"
}Create a transient access session
Creates a temporary, secure session for accessing a site via Winbox or SSH. The session is automatically revoked after the specified duration.
curl --request POST \
--url https://v1.api.altostrat.io/control-plane/{siteId}/transient-accesses \
--header 'Authorization: Bearer <token>' \
--header 'Content-Type: application/json' \
--data '
{
"expire_after_minutes": 60,
"type": "winbox",
"full_access": true,
"allow_rfc1918": false,
"allow_only_cidr": "203.0.113.42/32"
}
'{
"id": "f0e9d8c7-b6a5-4f3e-2d1c-0b9a8e7f6d5c",
"username": "transient-user-abc123",
"password": "P@ssw0rdABC123XYZ",
"port": 45821,
"type": "winbox",
"full_access": true,
"allow_rfc1918": false,
"allow_only_cidr": "198.51.100.10/32",
"revoked_early": false,
"expires_at": "2025-10-29T12:15:49Z",
"expired": false,
"entry_point": "edge-us-east-1a.ostrat.io",
"time_to_expire": "15 minutes from now",
"onclick": "winbox://edge-us-east-1a.ostrat.io:45821?username=transient-user-abc123&password=P@ssw0rdABC123XYZ"
}Documentation Index
Fetch the complete documentation index at: https://altostrat.io/docs/llms.txt
Use this file to discover all available pages before exploring further.
Authorizations
Enter your JWT bearer token.
Path Parameters
The unique identifier for the site.
"d290f1ee-6c54-4b01-90e6-d701748f0851"
Body
The number of minutes until the session automatically expires.
15 <= x <= 144060
The type of access protocol.
winbox, ssh "winbox"
Whether to grant full administrative privileges.
true
Whether to allow connections from private (RFC1918) IP addresses. Typically should be false for security.
false
Restrict access to a single source IP address or CIDR range. Use a /32 for a single IP.
"203.0.113.42/32"
Response
The newly created transient access object.
The unique identifier for the transient access session.
"f0e9d8c7-b6a5-4f3e-2d1c-0b9a8e7f6d5c"
The temporary username for this session.
"transient-user-abc123"
The temporary password for this session.
"P@ssw0rdABC123XYZ"
The public port on the Altostrat management server to connect to.
45821
The type of access protocol.
winbox, ssh "winbox"
Whether the session has full administrative privileges.
true
Whether access is allowed from private (RFC1918) IP ranges.
false
The source CIDR that is exclusively allowed to connect.
"198.51.100.10/32"
True if the session was manually revoked before it expired.
false
The timestamp when this session will automatically expire.
"2025-10-29T12:15:49Z"
True if the session has expired or been revoked.
false
The hostname of the Altostrat management server to connect to.
"edge-us-east-1a.ostrat.io"
A human-readable string indicating how long until the session expires.
"15 minutes from now"
A Winbox connection string for easy one-click access.
"winbox://edge-us-east-1a.ostrat.io:45821?username=transient-user-abc123&password=P@ssw0rdABC123XYZ"
Was this page helpful?