Skip to main content

Authorization

Follow this guide to create a new Marketo credential that will allow Nexla to authenticate to and exchange data with your Marketo account.
marketo_api_auth.png

Marketo

Prerequisites

Before creating a Marketo credential, you need to obtain your REST API Endpoint URL, Identity URL, Client ID, and Client Secret from your Marketo account. Marketo uses OAuth2 2-legged authentication for all API requests.

To obtain your Marketo API credentials, follow these steps:

  1. Sign in to your Marketo account using your administrator credentials.

  2. Navigate to Admin > Web Services in the Marketo admin menu.

  3. In the REST API section, locate your REST API Endpoint URL. This URL is specific to your Marketo instance and typically follows the format https://{instance_id}.mktorest.com/rest. Copy this URL, as you will need it to configure your Nexla credential.

  4. In the same REST API section, locate your Identity URL. This URL is also specific to your Marketo instance and typically follows the format https://{instance_id}.mktorest.com/identity. Copy this URL, as you will need it to configure your Nexla credential.

  5. Navigate to Admin > LaunchPoint in the Marketo admin menu.

  6. In the LaunchPoint section, locate or create a custom service for API access. If you don't have a custom service yet, click New or Add New to create one.

  7. Select your custom service from the list, and click View Details to view the service configuration.

  8. In the service details, locate your Client ID and Client Secret. These credentials are used for OAuth2 authentication. Copy both values, as you will need them to configure your Nexla credential.

  9. Note the Authentication Scope for your custom service. This is typically the email address of the user who owns the custom service. The scope determines the permissions available to your API integration.

  10. Store all credentials securely, as you will need them to configure your Nexla credential. The Client ID and Client Secret are sensitive information and should be kept confidential.

The REST API Endpoint URL and Identity URL are specific to your Marketo instance and are used to construct API endpoint URLs and authentication URLs, respectively. The Client ID and Client Secret are used for OAuth2 2-legged authentication, which allows your integration to authenticate and access Marketo resources based on the permissions configured for the custom service. The Authentication Scope determines the permissions available to your integration. For detailed information about obtaining API credentials, OAuth2 authentication, and available endpoints, refer to the Marketo REST API documentation and Marketo REST API authentication guide.

Create a Marketo Credential

  • To create a new Marketo credential, after selecting the data source/destination type, click the Add Credential tile to open the Add New Credential overlay.

New Credential Overlay – Marketo

MarketoCred.png

Credential Name & Description

  1. Enter a name for the credential in the Credential Name field and a short, meaningful description in the Credential Description field.

    Resource descriptions are recommended but are not required. They should be used provide information about the resource purpose, data freshness, etc. that can help the owner and other users efficiently understand and utilize the resource.

OAuth2 2-Legged Authentication

Marketo uses OAuth2 2-legged authentication for all API requests. This authentication method uses your Client ID and Client Secret to obtain an access token that authenticates your API requests to Marketo.

  1. Enter your Marketo REST API Endpoint URL in the Rest API Endpoint URL field. This should be the complete URL to your Marketo REST API endpoint, typically in the format https://{instance_id}.mktorest.com/rest. The REST API Endpoint URL is found in the Admin > Web Services menu in the REST API section. This URL is used to construct API endpoint URLs for all Marketo API requests.

  2. Enter your Marketo Identity URL in the Identity URL field. This should be the complete URL to your Marketo Identity endpoint, typically in the format https://{instance_id}.mktorest.com/identity. The Identity URL is found in the Admin > Web Services menu in the REST API section. This URL is used to obtain OAuth2 access tokens for authentication.

  3. Enter your Marketo Client ID in the Client ID field. This is the Client ID you obtained from your Marketo LaunchPoint custom service (Admin > LaunchPoint > View Details). The Client ID is used along with the Client Secret to authenticate your integration and obtain OAuth2 access tokens.

  4. Enter your Marketo Client Secret in the Client Secret field. This is the Client Secret you obtained from your Marketo LaunchPoint custom service (Admin > LaunchPoint > View Details). The Client Secret is used along with the Client ID to authenticate your integration and obtain OAuth2 access tokens. The Client Secret is sensitive information and must be kept confidential.

  5. Enter your Marketo Authentication Scope in the Authentication Scope field. This is typically the email address of the user who owns the custom service that was used to authenticate. The scope determines the permissions available to your API integration. The scope is usually the owning user of the custom service that was used to authenticate.

    Your Marketo REST API Endpoint URL and Identity URL can be found in your Marketo admin panel (Admin > Web Services > REST API section). Your Client ID and Client Secret can be found in your Marketo LaunchPoint custom service (Admin > LaunchPoint > View Details). The REST API Endpoint URL and Identity URL are specific to your Marketo instance and are used to construct API endpoint URLs and authentication URLs, respectively.

    The Client ID and Client Secret are used for OAuth2 2-legged authentication, which allows your integration to authenticate and access Marketo resources based on the permissions configured for the custom service. The Authentication Scope determines the permissions available to your integration. If your Client ID or Client Secret is compromised, you should immediately revoke the custom service in your Marketo LaunchPoint settings and create a new one.

    For detailed information about obtaining API credentials, OAuth2 authentication, and available endpoints, see the Marketo REST API documentation and Marketo REST API authentication guide.

Save the Credential

  1. Once all of the relevant steps in the above sections have been completed, click the Save button at the bottom of the overlay to save the configured credential.

  2. The newly added credential will now appear in a tile on the Authenticate screen during data source/destination creation and can be selected for use with a new data source or destination.